Summaries
Exchange Zero-Day, TeamPCP Worm Expands, and Fake AI Model Delivers Stealer
The Hacker News weekly recap covers CVE-2026-42897 Exchange Server spoofing under active exploitation, the TeamPCP supply chain worm's expanding blast radius through TanStack packages, and a fake Hugging Face AI model delivering Rust-based info-stealer malware.
View on Graph
Summary
The Hacker News weekly recap highlights Exchange Server vulnerability CVE-2026-42897 (CVSS 8.1) as the headline threat — a spoofing bug stemming from a cross-site scripting flaw in on-premise Exchange Server versions, confirmed under active exploitation. Microsoft has provided a temporary mitigation through the Exchange Emergency Mitigation Service while developing a permanent fix. The absence of details about the threat actor or attack scale leaves defenders with limited intelligence for hunting.
The TeamPCP supply chain worm continues to escalate, with a new wave compromising dozens of TanStack npm packages. The attackers are weaponizing credentials harvested through supply chain compromise to access organizations’ cloud infrastructure and potentially operate as initial access brokers for ransomware affiliates. The campaign has expanded across npm, PyPI, and Packagist, with downstream victims including UiPath, Mistral AI, and OpenSearch. The attackers are using the TruffleHog scanner to validate exfiltrated credentials in some waves.
A noteworthy emerging threat vector involves counterfeit AI models: a malicious Hugging Face repository imitating OpenAI’s Privacy Filter model reached the platform’s trending list, instructing users to run a batch file that deployed a Rust-based information stealer to Windows systems. The incident demonstrates that public AI model registries are becoming a viable software supply chain attack surface.
Why It Matters
This week’s stories share a common theme: attackers exploiting trust relationships rather than technical vulnerabilities alone. The Exchange spoofing bug exploits trust in email communications. The TeamPCP worm exploits trust in open-source package ecosystems. The fake Hugging Face model exploits trust in AI model registries. Defenders must shift from a patch-centric posture to one that includes supply chain verification, credential hygiene, and behavior-based detection.
Defender Takeaways
- Apply the Exchange Emergency Mitigation Service fix for CVE-2026-42897 on on-premise Exchange Servers; monitor for the permanent patch release.
- Audit npm dependency trees for any TanStack or node-ipc packages matching TeamPCP campaign indicators.
- Review cloud infrastructure access for any unauthorized usage originating from credentials that may have been compromised through the TanStack supply chain attack.
- Verify that any AI model repository usage includes publisher identity verification and unexpected binary download scanning.
- Rotate credentials for service accounts that may have been exposed through supply chain compromise; prioritize those with cloud infrastructure access.
- Monitor for Cisco Catalyst SD-WAN controller exploitation (CVE-2026-20182) — UAT-8616 has been attributed to active attacks on these devices.
Source
Title: Weekly Recap: Exchange 0-Day, npm Worm, Fake AI Repo, Cisco Exploit and More — The Hacker News
URL: https://thehackernews.com/2026/05/weekly-recap-exchange-0-day-npm-worm.html
Related
- Supply Chain Attack — detection and response for T1195 techniques
- Credential Stuffing — detection and response for T1110 techniques
- Cloud Threats — detection and response for T1525, T1552, T1613 techniques
- Web Application Attacks — detection and response for T1190 techniques