GitHub Confirms 3,800 Internal Repos Stolen Through Poisoned VS Code Extension

Chronological Source Flow
Back

AI Fusion Summary

GitHub confirmed a poisoned VS Code extension installed on an employee’s device gave TeamPCP access to roughly 3,800 internal repositories. The group, UNC6780, is selling the stolen code for at least $50,000. The breach aligns with Mini Shai‑Hulud worm activity.
Community Comments
Loading updates...
0