PCPJack Credential Stealer Targets Cloud Infrastructure Using 5 CVEs

Security researchers have identified a new credential theft campaign dubbed PCPJack that exploits five critical vulnerabilities to spread across cloud environments. The malware specifically removes competing threats like TeamPCP artifacts while harvesting credentials from cloud services, containers, and developer tools. Organizations using exposed cloud infrastructure should immediately apply available security patches to mitigate this credential stealing threat.