durabletask: TeamPCP's Latest PyPi Compromise
Malicious versions of the PyPI package durabletask were published, attributed to the TeamPCP threat actor. The attack matches known TeamPCP tactics used in prior supply chain compromises.
- Disclosed
- Last updated
- Blast radius
- Unknown scope; PyPI package with potential wide reach depending on adoption.
- Ecosystems
- Attack vectors
- Threat actor
- Affected entities
- durabletaskPyPI package compromised with malicious versions
TeamPCP, a known supply chain threat actor, compromised the durabletask package on PyPI by publishing malicious versions. The incident was reported by Wiz and follows established patterns from prior TeamPCP campaigns targeting package repositories.\n\nThe specific malicious versions and payload details are not disclosed in the summary provided. However, the attack matches recognized TeamPCP operational tactics in previous supply chain incidents.\n\nDownstream users who installed the compromised versions of durabletask are at risk. The full scope of impact and specific versions affected require examination of the full Wiz report."
Indicators of compromise
- Packages
- durabletask
Remediation
- Immediately audit all systems for installation of durabletask and identify affected versions
- Remove or upgrade durabletask to a known clean version from PyPI
- Review package dependencies and supply chain for similar compromises
- Enable package integrity verification and monitor PyPI for malicious uploads
- Implement runtime detection for indicators of compromise from malicious durabletask execution
Sources
Cite this entry
"durabletask: TeamPCP's Latest PyPi Compromise." supplychainattack.org, Supply Chain Attack Incident Catalog. Disclosed May 19, 2026; last updated June 7, 2026. https://supplychainattack.org/incident/durabletask-teampcp-s-latest-pypi-compromise-84w43k
Suggest a correction
Found an error or have a newer source? Corrections to factual errors take priority over new entries.
Related incidents
- activecritical
The Hades Campaign: Graph ML PyPI Packages Deploy Cross-Platform Memory Scrapers, AI Analyst Misdirection, and a Wiper Deterrent
On June 8, 2026, multiple Graph ML PyPI packages were compromised in the Hades campaign, deploying cross-platform memory scrapers, AI prompt injections for analyst misdirection, and token-revocation wipers. The attack targeted the bioinformatics ecosystem with sophisticated evasion techniques.
HadesPyPICompromised package - containedhigh
New Shai-Hulud attack trojanizes 19 science-focused PyPI packages
Hackers compromised 19 science-focused packages on PyPI in a Shai-Hulud supply-chain attack. The trojanized packages were collectively downloaded hundreds of thousands of times and delivered malware designed to steal developer secrets.
Shai-HuludPyPICompromised package - containedcritical
Microsoft's durabletask PyPI Package Compromised in Supply Chain Attack
Three malicious versions of Microsoft's durabletask Python package were published to PyPI on May 19, 2026, containing a 28 KB payload that steals credentials from cloud providers (AWS, Azure, GCP), Kubernetes, password managers, and developer tools. The attack has been attributed to the TeamPCP threat group and exhibits indicators of Eastern European cybercrime operations.
TeamPCPPyPICompromised package - containedcritical
TeamPCP Injects Two-Stage Credential Stealer into xinference PyPI Package
The xinference package on PyPI was compromised with a two-stage credential stealer attributed to the TeamPCP threat actor. The malicious code was injected into the package, potentially affecting users who installed compromised versions.
TeamPCPPyPICompromised packageMalicious maintainer