Are you sure you want to leave? You're just one step away from your free network consultation (valued at $495).
TeamPCP Hacks Checkmarx GitHub Actions Using Stolen CI Credentials
Two more GitHub Actions workflows have become the latest to be compromised by credential-stealing malware by a threat actor known as TeamPCP, the cloud-native cybercriminal operation also behind the Trivy supply chain attack.
The workflows, both maintained by the supply chain security company Checkmarx, are listed below –
checkmarx/ast-github-action
checkmarx/kics-github-action
Cloud security
