GitHub says hackers stole data from thousands of internal repositories
GitHub has confirmed that it was hacked, resulting in the theft of data from approximately 3,800 internal code repositories. The company stated that there is no evidence of impact on customer information outside of these repositories, but an investigation is ongoing. A hacking group called TeamPCP has claimed responsibility for the breach and is reportedly selling the stolen data on a cybercrime forum.
- ▪GitHub confirmed a hack that compromised around 3,800 internal code repositories.
- ▪The breach was linked to a poisoned VS Code extension used by developers.
- ▪TeamPCP, the group claiming responsibility, has previously breached the European Commission.
Opening excerpt (first ~120 words) tap to expand
GitHub, the popular developer platform owned by Microsoft, confirmed it was hacked and attackers had stolen data from around 3,800 internal code repositories. The code hosting and sharing giant said in a series of posts on X that it has “no evidence of impact to customer information stored outside of GitHub’s internal repositories,” but noted its investigation was ongoing. GitHub said it “detected and contained a compromise of an employee device involving a poisoned VS Code extension,” referring to a plugin for Visual Studio Code, a popular code editor that developers use for programming. Hackers are increasingly targeting popular open-source projects, including coding extensions, with the aim of compromising developers’ computers and their projects.
…
Excerpt limited to ~120 words for fair-use compliance. The full article is at TechCrunch.
Discussion
0 commentsMore from TechCrunch
