TECH NEWS

Hackers breach GitHub and access 3,800 internal repositories now listed for sale

https://www.techspot.com/images2/news/ts3_thumbs/2026/05/2026-05-22-ts3_thumbs-d2a.jpg

Serving tech enthusiasts for over 25 years.
TechSpot means tech analysis and advice you can trust.

What we know so far: Hackers have reportedly used a malicious Visual Studio Code extension to gain access to a GitHub developer's machine, then leveraged the stolen credentials to move into GitHub's own infrastructure and copy thousands of internal repositories. From there, they allegedly put parts of the stolen code up for sale on a cybercrime forum, turning what appeared to be a routine developer tool into the starting point of a wider supply chain incident.

GitHub has said it found about 3,800 internal repositories accessed in the breach and stressed that these contained its own code rather than customer projects. The attackers, a group calling itself TeamPCP, claim the number is closer to 4,000 and are actively attempting to sell the stolen data.

"We are here today to advertise GitHub's source code...

Copyright of this story solely belongs to techspot.com. To see the full text click HERE

Read more