kite.kagi.com

GitHub says poisoned extension exposed 3,800 internal repositories (opens in new tab)

Covers 6 stories See all stories this covers including GitHub says hackers stole data from thousands of internal repositories

GitHub confirmed that attackers exfiltrated internal repositories after compromising an employee device through a poisoned Visual Studio Code extension, identified in security reports as a malicious version of the Nx Console extension. The Microsoft-owned company said the attacker’s claim of about 3,800 repositories was “directionally consistent” with its investigation, and reports tied the claim to TeamPCP. GitHub said it detected and contained the device compromise, removed the malicious ex...

Read the original article
Sign in to keep reading the full article.
Sign UpLog In

Keyboard Shortcuts

Navigation

Next / previous post
j/k
Open post
oorEnter
Preview post
v

Post Actions

Love post
a
Like post
l
Dislike post
d
Undo reaction
u
Save / unsave
s

Recommendations

Add interest / feed
Enter
Not interested
x

Go to

Home
gh
Interests
gi
Feeds
gf
Likes
gl
History
gy
Changelog
gc
Settings
gs
Discover
gb
Search
/

General

Show this help
?
Submit feedback
!
Close modal / unfocus
Esc

Press ? anytime to show this help