惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

aimingoo的专栏
aimingoo的专栏
V
V2EX
G
Google Developers Blog
F
Full Disclosure
Martin Fowler
Martin Fowler
宝玉的分享
宝玉的分享
H
Hacker News: Front Page
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
NISL@THU
NISL@THU
G
GRAHAM CLULEY
V
Vulnerabilities – Threatpost
Hacker News - Newest:
Hacker News - Newest: "LLM"
A
About on SuperTechFans
The Cloudflare Blog
C
Cisco Blogs
D
DataBreaches.Net
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
Vercel News
Vercel News
P
Privacy International News Feed
Microsoft Security Blog
Microsoft Security Blog
Help Net Security
Help Net Security
Recorded Future
Recorded Future
PCI Perspectives
PCI Perspectives
S
Schneier on Security
AI
AI
N
News | PayPal Newsroom
雷峰网
雷峰网
C
Cyber Attacks, Cyber Crime and Cyber Security
P
Proofpoint News Feed
The Last Watchdog
The Last Watchdog
L
LINUX DO - 最新话题
Hugging Face - Blog
Hugging Face - Blog
Apple Machine Learning Research
Apple Machine Learning Research
Schneier on Security
Schneier on Security
S
Securelist
云风的 BLOG
云风的 BLOG
Stack Overflow Blog
Stack Overflow Blog
博客园_首页
AWS News Blog
AWS News Blog
TaoSecurity Blog
TaoSecurity Blog
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
Recent Commits to openclaw:main
Recent Commits to openclaw:main
博客园 - 三生石上(FineUI控件)
C
CXSECURITY Database RSS Feed - CXSecurity.com
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
Cloudbric
Cloudbric
C
Cybersecurity and Infrastructure Security Agency CISA
Project Zero
Project Zero
C
Check Point Blog
S
Security Affairs

Risky Business Media

Srsly Risky Biz: Ransomware uses AI to amp up negotiations Fortibleed: The bleeding edge of AI cybercrime Between Two Nerds: Exploits are not cyber power What to do 'til the bugpocalypse gets here Risky Bulletin: NSA Tailored Access Operations is back Sponsored: Why Sublime doesn’t toss AI at every email Srsly Risky Biz: US Supreme Court undermines Section 702 intel Risky Bulletin: DHS IG investigates forced CISA reassignments Soap Box: Using threat hunting to drive detection Between Two Nerds: Why AI has not meant more hacks. Yet. Risky Bulletin: EU official’s phone infected with Pegasus Risky Bulletin: FatFs bugs enable physical access attacks on a load of devices Srsly Risky Biz: America won't beat the distillation ecosystem Risky Bulletin: Researcher drops giant cache of zero-days Risky Business #844 -- China closes AI vulndev gap as USA lifts Fable ban Mythos on your desk? Using local LLMs for code reviews Between Two Nerds: Set cyberspace ablaze Risky Bulletin: White House asks OpenAI to restrict GPT 5.6 Sponsored: Corelight’s blueprint for AI-era defence Risky Bulletin: Operation Endgame dismantles Amadey and StealerC Srsly Risky Biz: Open weight models make the Mythos debate moot Risky Bulletin: FortiBleed hacks involved a lot of traffic sniffing Risky Business #843 -- Fortibleed is kinda awesome, actually Pitching security startups to VCs in the AI era Sponsored: Trail of Bits and OpenAI patch the planet Between Two Nerds: The PRC vs AI Risky Bulletin: Klue breach impacts security firms How using open weight models can blow up in your face Risky Bulletin: Creds for 74,000 Fortinet devices leaked Srsly Risky Biz: Anthropic has artificial, but not emotional, intelligence Risky Bulletin: China arrests Silver Fox cybercrime group suspects Risky Business #842 -- Anthropic needs an adult in the C suite The state of the art in AI model jailbreaks Between Two Nerds: Why NATO and cyber don't mix Risky Bulletin: Arch Linux supply chain attack hits 1,900 packages Sponsored: Ent on using AI to track human behavior on the endpoint Why NPM v12 won’t stop supply chain attacks Risky Bulletin: CISA tightens patching rules amid bug deluge Sponsored: Understanding CI/CD attack paths Srsly Risky Biz: Europe wants to wean itself off US tech Risky Bulletin: Nightmare Eclipse drops fresh 0day Risky Business #841 -- Microsoft gets owned and 0day'd Between Two Nerds: Nerds at NATO Risky Bulletin: RubyGems adds dependency cooldowns to counter supply chain attacks Everything is getting much worse, much faster Soap Box: Detection and response in the AI age Risky Bulletin: EU unveils digital sovereignty plan Srsly Risky Biz: NATO's cyber approach needs to change Risky Bulletin: FSB calls out Western spyware operation Risky Business #840 -- Microsoft walks back researcher threats Between Two Nerds: The intelligence cult Risky Bulletin: Recently patched PAN 0day exploited in the wild Sponsored: Inside CISA's disastrous secrets leak Risky Bulletin: Dutch police take down 17m device botnet Risky Bulletin: Iran to reconnect to the Internet Risky Business #839 -- TeamPCP stole GitHub's internal repos How to survive supply chain attacks Risky Bulletin: Mythos has found thousands of critical bugs Sponsored: Teaching AI agents the rules of the road Risky Bulletin: Microsoft ends SMS MFA for personal accounts How the CopyFail disclosure went sideways Risky Business #838 -- GitHub investigates possible breach
Solo podcast: A deep dive on TeamPCP
James Wilson · 2026-06-02 · via Risky Business Media

Risky Business Features Podcast

June 02, 2026

Presented by

James Wilson

James Wilson

Technology Editor

In this solo episode, James Wilson takes a detailed look at TeamPCP.

It started off by launching clumsy attacks against misconfigured Kubernetes clusters in September 2025. But by February this year, TeamPCP had skilled up and was smashing global software supply chains in the highest profile attacks of 2026.

TeamPCP upskilled and turned the software development ecosystem into its personal credential harvesting machine.

Here’s how TeamPCP did it, and what we can learn from it.

Your browser does not support the audio element.

Solo podcast: A deep dive on TeamPCP

0:00 / 64:01

Logo