SAP npm Packages Compromised in Supply-Chain Attack by TeamPCP to Steal Developer Credentials

Multiple official SAP npm packages were compromised in a supply-chain attack attributed to a threat actor known as TeamPCP, designed to steal credentials and authentication tokens from developers' systems. The attack targeted SAP's legitimate npm packages, though specific package names and versions were not disclosed. No exact timeline or dates for the compromise were provided, but the incident was publicly reported on July 10, 2024. The malicious code exfiltrated sensitive data, including environment variables and stored credentials, to attacker-controlled infrastructure. The impact primarily affects developers and organizations using the compromised SAP npm packages in their projects.