GitHub, owned by Microsoft, confirmed a hack involving the theft of data from about 3,800 internal code repositories. They reported on X that there was “no evidence of impact to customer information stored outside of GitHub’s internal repositories,” while their investigation continues. The breach involved an employee device compromised via a “poisoned” VS Code extension. Open-source projects and coding extensions are increasingly targeted by hackers to access numerous computers simultaneously. GitHub did not disclose the affected extension’s name. According to reports by The Record and Bleeping Computer, a hacking group called TeamPCP claimed responsibility for the breach and is selling the data on a cybercrime forum. GitHub hasn’t commented or revealed if there’s been a ransom demand. TeamPCP was previously involved in a European Commission data breach, stealing data using malware distributed through Trivy. OpenAI faced a similar attack where hackers infiltrated Tanstack to deploy updates with malware to steal passwords and tokens.
Hackers Steal Data from Thousands of GitHub’s Internal Repositories
1 Min Read