ALERT

ACTIVE THREATS: Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens • PTC warns of imminent threat from critical Windchill, FlexPLM RCE bug • Grassroots DICOM (GDCM) • Schneider Electric EcoStruxure Foxboro DCS • Schneider Electric Plant iT/Brewmaxx ACTIVE THREATS: Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens • PTC warns of imminent threat from critical Windchill, FlexPLM RCE bug • Grassroots DICOM (GDCM) • Schneider Electric EcoStruxure Foxboro DCS • Schneider Electric Plant iT/Brewmaxx

⌕

🎙️ Podcast About

LIVE

🟢ToolsMEDIUM

Checkmarx KICS Code Scanner Targeted in Widening Supply Chain Hit

TeamPCP is the likely cyber threat actor behind attacks on Trivy, Checkmarx's KICS and VS Code plug-ins, and the LiteLLM AI library — and all signs point to more attacks to come.

via Dark Reading·March 25, 2026·3h ago

SHARE:𝕏 IN

TeamPCP is the likely cyber threat actor behind attacks on Trivy, Checkmarx's KICS and VS Code plug-ins, and the LiteLLM AI library — and all signs point to more attacks to come.

Source attribution: via Dark Reading. HackWire aggregates and contextualizes publicly reported cybersecurity news for informational purposes.