GitHub Says 3,800 Repositories Breached—TeamPCP Hackers Demand $50,000
The hacker group TeamPCP has breached GitHub's internal repositories, potentially compromising source code after a GitHub employee installed a malicious VS Code extension. The group claims to have exfiltrated approximately 3,800 repositories and is attempting to sell the stolen data for at least $50,000, threatening to leak it if no buyer is found. This incident is part of a broader trend of software supply-chain attacks targeting developer tools and ecosystems. AI
IMPACT Highlights the increasing risk of supply-chain attacks targeting AI developer tools and ecosystems, potentially compromising sensitive code and credentials.