DMZ//THREAT INTEL
FEED ACTIVELAST SYNC: 06:03:37ZSOURCES: 14CRITICAL: 15
⚠ ACTIVE ALERTS
SYLVANITE CRITICAL — SYLVANITE is a newly named Dragos-tracked threat group identified as a dedicated… /// @MsftSecIntel CRITICAL — We are tracking TeamPCP (UNC6780) activity following the GitHub internal repository… /// @GossiTheDog CRITICAL — The GitHub / TeamPCP breach is now being monetized on BreachForums. Listing is up — $95k… /// @struppigel CRITICAL — SUPPLY CHAIN ALERT: Laravel-Lang PHP packages backdoored May 22-23 via hijacked GitHub… /// @MalwareHunterTeam CRITICAL — Seeing fresh DebugElevator stealer log batches already appearing for sale on Exploit.in —…
15Critical Threats
8Active CVEs
0IOCs Tracked
0New Advisories
INTEL FEED/ARCHIVE/SUPPLY-CHAIN
DMZ INTEL DESK//FILED: 2026-05-23//08:50Z
CRITICAL#supply chain

TeamPCP 'Mini Shai-Hulud' npm Worm Chains GitHub Actions, OIDC Poisoning to Breach GitHub Internal Repos, Grafana, OpenAI via TanStack Compromise

TeamPCP's self-replicating Mini Shai-Hulud supply chain worm compromised 84 malicious artifacts across 42 TanStack npm packages on May 11, abusing GitHub Actions workflows and OIDC token theft to propagate through CI/CD pipelines — marking the first documented malicious npm package carrying valid SLSA provenance. GitHub confirmed exfiltration of approximately 3,800 private repositories; Grafana Labs refused an extortion demand after its codebase was stolen via a single un-rotated workflow token; OpenAI confirmed two employee devices were compromised with code-signing keys for Windows, macOS, iOS, and Android apps now being revoked. The same C2 subnet (83.142.209.0/24) links this wave to TeamPCP's earlier Trivy and Bitwarden CLI compromises, indicating a sustained, pre-planned campaign.

The same C2 subnet (83.142.209.0/24) links this wave to TeamPCP's earlier Trivy and Bitwarden CLI compromises, indicating a sustained, pre-planned campaign.

This intelligence brief has been compiled from open-source reporting and corroborated across multiple threat intelligence sources. Defenders should treat the critical severity rating as a guide to prioritization within their environment.

For the latest indicators of compromise, formatted SIEM queries, and unredacted actor intelligence related to this brief, DMZ Operator subscribers receive automated IOC packages via email the moment new advisories are published.

FILED UNDER:
teampcp · mini-shai-hulud · tanstack · npm-supply-chain · github · grafana · openai · cicd-compromise · oidc-abuse
STAY AHEAD OF THREATS
Daily intel briefs and IOC packages — delivered to your inbox the moment a new advisory drops.
SUBSCRIBE — $29/MO →
SHARE BRIEF:✕ Post on Xin Share on LinkedIn

RELATED ACTORS

ACTOR
TEAMPCP
CRIMINAL

MORE FROM ARCHIVE

# SUPPLY CHAIN
2026-05-26
Laravel-Lang Composer Packages Backdoored via GitHub Tag Rewrite; 700+ Versions Deliver CI/CD Credential Stealer
# SUPPLY CHAIN
2026-05-25
Laravel-Lang Composer Packages Compromised via Tag-Rewrite Attack — 700+ Malicious Versions Deploy Cross-Platform Credential Stealer Targeting Cloud Keys, CI Tokens, and Crypto Wallets
# SUPPLY CHAIN
2026-05-25
TeamPCP (UNC6780) Mini Shai-Hulud Worm Pivots Through Poisoned Nx Console VS Code Extension to Exfiltrate 3,800 GitHub Internal Repos
# SUPPLY CHAIN
2026-05-24
Operation Megalodon: Automated Campaign Backdoors 5,561 GitHub Repos via Forged CI Commits in Six Hours, 449GB Exfiltrated