A newly discovered worm, dubbed PCPJack, is infiltrating exposed cloud instances and removing existing TeamPCP malware, only to claim the compromised systems for itself. This malicious framework was first identified in late April by researchers at SentinelLabs, a division of SentinelOne, who noted its unusual behavior among Kubernetes-focused cloud hacktools. PCPJack's primary function is to eradicate competing malware, thereby securing a foothold in the compromised system. By doing so, the worm's operators can exert control over the system, potentially for malicious purposes. The emergence of PCPJack highlights the ongoing cat-and-mouse game between malware operators and security researchers1. This development matters to cybersecurity practitioners because it signals a new wave of sophisticated, competitive malware that can outmaneuver existing threats, making it essential to stay vigilant and adapt defenses accordingly.
Worm rubs out competitor's malware, then takes control
⚡ High Priority
Why This Matters
Technology developments from SentinelOne signal where capability and disruption are heading.
References
- The Register. (2026, May 8). Worm rubs out competitor's malware, then takes control. *The Register*. https://www.theregister.com/security/2026/05/08/worm-rubs-out-competitors-malware-then-takes-control/5237389
Original Source
The Register
Read original →