PROBABLYPWNED
Threat IntelligenceJuly 5, 20263 min read

Vect and TeamPCP Alliance Creates 'Industrialized Ransomware' Pipeline

Sophos and FBI warn of new partnership combining supply chain credential theft with ransomware deployment. 500,000 credentials already stolen.

Alex Kowalski

Sophos published research on July 2 warning that the Vect ransomware operation has formalized a partnership with TeamPCP, the supply chain threat group responsible for compromising Trivy, Checkmarx, and LiteLLM earlier this year. The FBI issued a FLASH alert the same day. Together, these groups have created what Sophos calls an "unprecedented model of industrialized ransomware."

The arrangement is straightforward: TeamPCP steals credentials at scale through supply chain attacks, and Vect converts those credentials into ransomware deployments. At least one confirmed Vect attack has already used TeamPCP-sourced credentials, meaning the pipeline is operational.

The Scale of Credential Theft

TeamPCP's 2026 campaign compromised four widely used developer and security tools in rapid succession:

DateTargetImpact
March 19Aqua Security Trivy10,000 CI/CD workflows, 500,000+ credentials
March 23CheckmarxRepos compromised using Trivy-sourced creds
March 24LiteLLMVersions 1.82.7 and 1.82.8 poisoned
March 27Telnyx Python SDKVersions 4.87.1 and 4.87.2 compromised

The stolen data includes passwords, cloud access tokens, SSH keys, Kubernetes secrets, and API keys. Organizations across technology, finance, healthcare, and government sectors were affected, with confirmed victims in Canada, Serbia, South Korea, the UAE, and the United States.

How the Partnership Works

Vect emerged in late December 2025 and quickly partnered with BreachForums to recruit affiliates. By March 2026, the group had formalized an operational alliance with TeamPCP, gaining access to hundreds of thousands of valid credentials.

For organizations that had login credentials stolen by TeamPCP, Sophos warns they now face elevated risk of Vect ransomware attacks. The credentials provide initial access, eliminating the need for phishing or vulnerability exploitation.

The FBI identified four malware families associated with TeamPCP operations: CanisterWorm, Sandclock, Mini Shai-Hulud (a self-replicating worm targeting open source repositories), and Miasma (a Mini Shai-Hulud variant).

Technical Flaws Don't Mean Low Risk

Security researchers at Jumpsec identified a critical bug in Vect's ransomware: files larger than 128KB are permanently destroyed rather than encrypted. Vect denied the issue exists. This technical incompetence doesn't reduce the threat—it increases it. Victims may pay ransoms only to discover their data is unrecoverable.

The FBI noted that TeamPCP exploited CVE-2025-55182 (React2Shell), a CVSS 10.0 pre-authentication RCE flaw in React Server Components, as part of their credential harvesting operations. The group's infrastructure characteristically uses outbound port 666 for command-and-control traffic.

What Organizations Should Do

  1. Check for TeamPCP exposure — If your organization used Trivy, Checkmarx, LiteLLM, or Telnyx SDK between February and April 2026, assume credential exposure
  2. Rotate affected credentials — Cloud tokens, SSH keys, and API keys from compromised build pipelines should be invalidated
  3. Monitor for Vect indicators — The ransomware has known signatures; update detection systems accordingly
  4. Review supply chain security — Pin dependencies, verify package integrity, monitor for unexpected changes

This partnership represents exactly the threat model security teams have warned about: credential theft at scale feeding directly into ransomware operations. The Trivy supply chain compromise we covered in March was the first domino. The ransomware deployments are the payout.

Organizations that experienced similar supply chain credential theft should treat this as a direct escalation of their risk profile. The credentials are in Vect's hands now.

Related Articles