TeamPCP exfiltrated 3,800 internal GitHub repositories after poisoning a VS Code extension. No customer data was affected, the company says.
XDA Developers on MSN
VS Code's task runner saves me hours every week, but almost nobody knows it exists
Everyone should be using this feature.
Morning Overview on MSN
GitHub just confirmed hackers broke into its own code through a poisoned coding tool — slipping in on a developer’s laptop without anyone noticing for days
Sometime in early 2025, an attacker slipped malicious code into a Visual Studio Code extension, and a GitHub employee ...
TeamPCP gained access to GitHub's private source code after an employee unknowingly installed a malicious coding tool.
GitHub confirms breach of 3,800 internal repos after employee installs poisoned VS Code extension - SiliconANGLE ...
GitHub confirmed attackers stole 3,800 internal repositories via a poisoned VS Code extension. The same threat group, TeamPCP ...
GitHub is just the latest victim of TeamPCP, a gang that has carried out a spree of software supply chain attacks that has ...
Microsoft has released VS Code 1.121 with remote AI agents, Mermaid rendering, HTML previews, and terminal optimizations.
A threat actor compromised an Nx developer and posed as a legitimate maintainer to publish a malicious extension on Visual ...
LOS ANGELES, CA – Hulu has ordered Mindy Kaling’s new comedy series, ‘Not Suitable for Work,’ which follows five young professionals balancing their careers and personal lives in Manhattan’s Murray ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results