A tool called PCPJack has been identified using parquet files as a covert method to discover and pre-validate targets across multiple cloud environments, exploiting a format unlikely to trigger standard security alerts.