GitHub Breach: 3,800 Internal Repos Stolen via Poisoned VS Code Extension
Microsoft's GitHub suffered its largest security breach on May 19, 2026, when attackers exfiltrated approximately 3,800 internal repositories via a poisoned Nx Console VS Code extension installed on an employee device. The TeamPCP threat group claimed responsibility, demanding $50,000 to prevent a public leak. The attack also compromised the npm registry with 637 malicious AntV versions. GitHub contained the breach, rotated secrets, and is notifying affected customers. No customer repositories were impacted, but some internal repos contained customer support excerpts.
Cross-source coverage
Wire timeline
GitHub internal repositories breached via malicious VS Code extension, data offered for sale
GitHub confirmed that approximately 3,800 internal repositories were breached after a developer unknowingly installed a malicious Visual Studio Code extension. The attack, claimed by the TeamPCP hacking group, involved exfiltration of GitHub-internal repositories only, with no evidence of impact on customer repositories. GitHub's CISO Alexis Wales stated that some internal repositories contained customer information, such as excerpts of support interactions, and affected customers will be notified. GitHub began rotating critical secrets immediately upon detection. TeamPCP, linked to the Mini Shai-Hulud worm, is offering the stolen data for $50,000 and threatens to leak it if no offer is made. The incident follows a separate backdooring of the Nx Console VS Code extension, highlighting ongoing supply chain risks targeting developers.
Latest from ITProGitHub Internal Repositories Breached via Malicious Nx Console VS Code Extension
GitHub confirmed that a breach of its internal repositories resulted from a compromised employee device that installed a poisoned version of the Nx Console VS Code extension. The malicious extension, published by the Nx team after one of its developers was hacked in the wake of the TanStack supply chain attack, was live on the Visual Studio Marketplace for only 18 minutes. The threat actor group TeamPCP exfiltrated approximately 3,800 repositories, stealing credentials from 1Password, Anthropic Claude Code, npm, GitHub, and AWS. GitHub stated no customer data outside internal repositories was impacted, rotated critical secrets, and continues to monitor the situation. The incident highlights vulnerabilities in auto-updating extension marketplaces and the interconnected nature of software supply chain attacks.
The Hacker NewsGitHub Confirms Breach, 4K Internal Repos Stolen by TeamPCP
GitHub confirmed a data breach on May 20, 2026, in which a threat actor known as TeamPCP stole approximately 4,000 internal code repositories. The breach was initiated through a poisoned Visual Studio Code extension on an employee device. GitHub detected and contained the compromise, rotated critical secrets, and began incident response. TeamPCP, a financially motivated group, advertised the stolen data for sale on a dark web forum, threatening to leak it if no buyer is found. The group has previously been linked to the Shai-Hulud self-replicating worm attacks. Security experts note that the attack exploited the fundamentally broken trust model around developer tooling, as VS Code extensions run with the same privileges as the editor itself.
darkreadingGitHub Confirms Major Breach: 3,800 Internal Repositories Exfiltrated via Poisoned VS Code Extension
Microsoft's GitHub suffered its largest security breach after attackers exfiltrated code from approximately 3,800 internal repositories. The breach, detected on May 19, originated from a compromised employee device via a poisoned Visual Studio Code extension. The threat group TeamPCP claimed responsibility, posting a list of breached repositories on LimeWire and demanding a $50,000 payment to prevent a public leak. Security firm Akido Security linked the attack to a separate incident where the popular Nx Console VS Code extension was backdoored, stealing credentials from developers. The same campaign also led to a supply chain compromise of the npm registry, with 637 malicious versions of the AntV tool published. GitHub has contained the breach, rotated secrets, and promised a full incident report.
To pay, or not to pay: 58% of CISOs say they would pay the ransom for their data | CSO OnlineGitHub Confirms Major Breach: 3,800 Internal Repositories Exfiltrated via Poisoned VS Code Extension
Microsoft's GitHub suffered its largest security breach after attackers exfiltrated code from approximately 3,800 internal repositories. The breach, detected on May 19, originated from a compromised employee device via a poisoned Visual Studio Code extension. The TeamPCP threat group claimed responsibility, threatening to leak the stolen code unless a buyer paid at least $50,000. Security firm Akido Security linked the attack to a separate incident where the popular Nx Console VS Code extension was backdoored, stealing credentials from developers' workspaces. The same campaign also led to a supply chain compromise of the npm registry, with 637 malicious versions of the AntV data visualization tool published. GitHub has contained the breach, rotated secrets, and promised a full incident report. The attack highlights the risk of trusted developer tools being weaponized for credential theft and supply chain infiltration.
The role of MCP in context engineering | InfoWorldGitHub says internal repositories were impacted in poisoned VS Code extension attack
GitHub disclosed on Tuesday that internal repositories were exfiltrated after an employee device was compromised through a malicious Visual Studio Code extension. The Microsoft-owned company detected and contained the breach, removed the malicious extension version, isolated the affected endpoint, and rotated critical secrets. The hacking group TeamPCP claimed 3,800 repositories were impacted, which GitHub said was 'directionally consistent' with its investigation. The incident may be linked to a compromised maintainer of the Nx Console extension, which has millions of installs. Nx CEO Jeff Cross reported that the malicious version 18.95.0 may have been installed by over 6,000 users. GitHub stated no customer data outside the affected internal repositories was compromised. The attack highlights growing supply chain risks in software development ecosystems, where compromised developer tools can access source code, credentials, and build systems.
CyberScoopGitHub Breach: Employee Device Hack via Poisoned VS Code Extension Leads to Exfiltration of Over 3,800 Internal Repositories
GitHub confirmed a security breach where a threat actor known as TeamPCP gained unauthorized access to its internal repositories by compromising an employee device through a poisoned Microsoft Visual Studio Code extension. The attacker exfiltrated approximately 3,800 internal repositories and listed the source code for sale on a cybercrime forum for at least $50,000. GitHub stated there is no evidence of impact to customer data stored outside internal repos and has rotated critical secrets. Separately, TeamPCP's self-replicating malware campaign, Mini Shai-Hulud, compromised the official Microsoft Python client 'durabletask' on PyPI, deploying an infostealer targeting cloud credentials, password managers, and developer tools. The malware propagates via AWS SSM and kubectl exec, and uses a novel FIRESCALE mechanism to find backup C2 addresses via GitHub public commits.
The Hacker News