Microsoft-owned popular developer platform GitHub confirmed that it was breached and attackers stole data from around 3,800 internal code repositories.
In a series of posts on X the company said, “no evidence of impact to customer information stored outside of GitHub’s internal repositories,” while adding that the investigation is still underway. GitHub also revealed that it “detected and contained a compromise of an employee device involving a poisoned VS Code extension,” referring to a malicious plug-in for Visual Studio Code, the widely used programming editor.
Cybercriminals are increasingly targeting popular open-source projects and coding extensions, aiming to compromise developers’ systems and software projects. Targeting popular projects allows hackers to gain access to vast numbers of computers at the same time, magnifying the impact of their attacks.
GitHub did not reveal the compromised extension. However, it is reported that a hacking group known as TeamPCP has claimed responsibility for the breach and is allegedly selling the stolen data on a cybercrime forum.
TeamPCP had previously claimed responsibility for a cyberattack on the European Commission, which resulted in the theft of more than 90 GB of data from the organisation’s cloud storage systems.
OpenAI was also targeted recently in a similar but separate attack that saw hackers break into TanStack, a platform used by web developers, to push updates containing malware that let the hackers steal passwords and tokens from users.
See What’s Next in Tech With the Fast Forward Newsletter
Tweets From @varindiamag
Nothing to see here - yet
When they Tweet, their Tweets will show up here.
