GitHub confirms breach of 3,800 repos via malicious VSCode extension
Summary
GitHub confirmed a breach affecting roughly 3,800 internal repositories after a malicious VS Code extension was installed. The organization removed the trojanized extension and contained the endpoint as part of incident response; GitHub says customer data outside the affected repos appears unaffected, while threat actors claimed access. The article highlights ongoing supply-chain risks from developer tools and past VS Code extension abuses.