TeamPCP expands: Supply chain compromise spreads from Trivy to Checkmarx GitHub Actions

TeamPCP, a threat actor, compromised Aqua Security's Trivy vulnerability scanner and Checkmarx's GitHub Actions to inject a credential-stealing payload into CI/CD pipelines, affecting numerous repositories. The attack involved force-pushing malicious commits to redirect actions, enabling credential scraping, cloud metadata harvesting, and encrypted exfiltration to typosquat domains. The Sysdig Threat Research Team identified a similar pattern in Checkmarx's GitHub Action shortly after the initial Trivy compromise, indicating a broader supply chain compromise. Runtime detection tools like Sysdig Secure and Falco proved effective in identifying the credential theft and exfiltration activities due to their focus on system behavior rather than relying on domain reputation or static analysis. This incident underscores the importance of runtime monitoring and using commit SHA pinning to prevent such attacks, as the same threat actor expanded their reach across the CI/CD ecosystem using deceptive techniques to avoid detection.