Self-propagating malware poisons open source software and wipes Iran-based machines
By Dan Goodin
Published on March 24, 2026.
A new hacking group, named TeamPCP, has been operating in a persistent campaign that spreads a self-propagating backdoor and a data wiper that targets Iranian machines. The group, which gained notoriety in December, has also compromised virtually all versions of the Trivy vulnerability scanner in a supply-chain attack after gaining privileged access to the GitHub account of its creator. The worm was controlled by an unusual mechanism designed to be tamper-proof and constantly changing URLs for servers hosting malicious binaries.
Related Articles
Canada's Postmedia, Elevation Unveil Strategic Feature Partnership
Postmedia and Elevation Pictures have announced a strategic partnership to support Canadian feature projects, leveraging Postmedia’s reach and data insights.
Lenovo's Intel RTX 5050 laptop with 16GB RAM: $300 off right now
LenThe Lenovo LOQ 17IRX10, featuring impressive specs including an Intel RTX 5050 graphics card, is available for just $800 at B&H's offer of $800.
Stop Outlook meddling in your search results
How to disable "Top Results" from Outlook?