[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fNX4PuR6GYCHvuc6Nv3OQLNPURkaZaJXN7zBa6dCkYtc":3},{"article":4,"iocs":48},{"id":5,"title":6,"slug":7,"summary":8,"ai_summary":9,"brief":10,"full_text":11,"url":12,"image_url":11,"published_at":13,"ingested_at":14,"relevance_score":15,"entities":16,"category_id":28,"category":29,"article_tags":32},"c575ce6a-0f5f-4be8-94c7-5f21ec4b1637","What PCPJack does after it wins the turf war:\n🔑 Steals cloud credentials across AWS, Kubernetes,...","what-pcpjack-does-after-it-wins-the-turf-war-steals-cloud-credentials-across-aws-c3ca3a","What PCPJack does after it wins the turf war:\n🔑 Steals cloud credentials across AWS, Kubernetes, Docker, Slack, GitHub, Stripe, and 30+ other services\n🌐 Propagates externally using Common Crawl parquet data — a legitimate web archive nonprofit — as its target list\n💀 Deploys","PCPJack is a sophisticated malware that wins turf wars on compromised systems and then pivots to steal cloud credentials across multiple major platforms including AWS, Kubernetes, Docker, Slack, GitHub, and Stripe. The malware uses Common Crawl parquet data—a legitimate web archive nonprofit's datasets—as a target list for external propagation. This represents a multi-vector attack combining credential theft with supply-chain abuse of public infrastructure.","PCPJack malware steals cloud credentials from AWS, Kubernetes, Docker, and 30+ services.",null,"https:\u002F\u002Fx.com\u002FSentinelOne\u002Fstatus\u002F2052431956563066972","2026-05-07T16:54:45+00:00","2026-05-07T17:00:07.818735+00:00",8,[17,20,22,24,26],{"name":18,"type":19},"AWS","product",{"name":21,"type":19},"Kubernetes",{"name":23,"type":19},"Docker",{"name":25,"type":19},"Slack",{"name":27,"type":19},"GitHub","89f78b1c-3503-45a1-9fc7-e23d2ce1c6d5",{"id":28,"icon":11,"name":30,"slug":31},"Malware","malware",[33,38,43],{"category":34},{"id":35,"icon":11,"name":36,"slug":37},"26b0b636-0e31-4db1-bffb-61bdf9f20a58","Supply Chain","supply-chain",{"category":39},{"id":40,"icon":11,"name":41,"slug":42},"c70f3a41-2f0c-4608-870d-b8cbcd8be076","Cloud Security","cloud-security",{"category":44},{"id":45,"icon":11,"name":46,"slug":47},"e7b231c8-5f79-4465-8d38-1ef13aea5a14","Threat Intelligence","threat-intelligence",[49],{"type":31,"value":50,"context":51},"PCPJack","Cloud credential-stealing malware targeting AWS, Kubernetes, Docker, Slack, GitHub, Stripe and 30+ services"]