What PCPJack does after it wins the turf war: 🔑 Steals cloud credentials across AWS, Kubernetes,...

Summary

PCPJack is a sophisticated malware that wins turf wars on compromised systems and then pivots to steal cloud credentials across multiple major platforms including AWS, Kubernetes, Docker, Slack, GitHub, and Stripe. The malware uses Common Crawl parquet data—a legitimate web archive nonprofit's datasets—as a target list for external propagation. This represents a multi-vector attack combining credential theft with supply-chain abuse of public infrastructure.

Indicators of Compromise

• malware — PCPJack

Entities