Data Breaches

GitHub Confirms Hack Impacting 3,800 Internal Repositories

The TeamPCP hacking group accessed the repositories after a GitHub employee installed a poisoned VS Code extension.

GitHub vulnerability

Microsoft-owned code-hosting platform GitHub on Wednesday morning confirmed that approximately 3,800 internal repositories were impacted in a supply chain attack.

On Tuesday, the infamous hacking group TeamPCP, known for a series of recent supply chain attacks targeting the open source software community, claimed the hack of 4,000 GitHub internal repositories.

Boasting about the incident on an underground hacking forum, the threat actor claimed the theft of source code and internal orgs, offering the allegedly stolen information to any buyer willing to pay at least $50,000 for it.

GitHub launched an investigation into the matter shortly after and roughly five hours later confirmed the attackers’ claims.

“Our current assessment is that the activity involved exfiltration of GitHub-internal repositories only. The attacker’s current claims of ~3,800 repositories are directionally consistent with our investigation so far,” GitHub said.

The code-sharing platform immediately rotated critical secrets, prioritizing highest-impact credentials first.

Advertisement. Scroll to continue reading.

“We continue to analyze logs, validate secret rotation, and monitor for any follow-on activity. We will take additional action as the investigation warrants,” GitHub said, promising a full incident report at a later date.

The intrusion, the platform said, was the result of an employee installing a poisoned VS Code extension.

GitHub did not name the extension and did not share details on the type of data the compromised employee device contained.

According to Aikido Security researcher Charlie Eriksen, VS Code extensions have full access to all data on a developer’s machine, including credentials, SSH keys, cloud keys, and all other secrets.

“Developer workstations are the number one target in supply chain attacks right now, and this is exactly why. TeamPCP has compromised Trivy, Checkmarx, Bitwarden CLI, TanStack, and now GitHub, all in 2026, all through developer tooling,” Aikido Security’s Mackenzie Jackson said.

“A single VS Code extension on one employee’s machine was enough to get access to 3,800 internal GitHub repositories. Most security teams still have zero visibility into what extensions or packages are on their developers’ machines, or how recently they were published. That’s the blind spot these attacks keep walking through,” Jackson added.

Related: TeamPCP Ups the Game, Releases Shai-Hulud Worm’s Source Code

Related: OpenAI Hit by TanStack Supply Chain Attack

Related: TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack

Related: Are SBOMs Failing? Supply Chain Attacks Rise as Security Teams Struggle With SBOM Data

Related Content

Supply Chain Security

By default, npm install will no longer execute scripts from dependencies, unless explicitly allowed.

Vulnerabilities

A researcher has disclosed the full details of the vulnerability and released a PoC without notifying Microsoft in advance.

Application Security

Fake automated commits injected GitHub Actions workflows containing payloads to steal credentials, CI secrets, keys, and tokens.

Malware & Threats

A compromised maintainer account was used to publish malicious package versions across the @antv namespace.

Malware & Threats

The hacking group is encouraging miscreants to use the code in supply chain attacks, promising monetary rewards.

Malware & Threats

Over 400 malicious versions of 170 packages were published as part of the new Mini Shai-Hulud campaign.

Supply Chain Security

A malicious version of the plugin was published to the Jenkins Marketplace late last week.

Malware & Threats

The malware framework targets web applications and cloud environments, including AWS, Docker, Kubernetes, and more.

Copyright © 2026 SecurityWeek ®, a Wired Business Media Publication. All Rights Reserved.

Exit mobile version