GitHub Confirms Breach, 4K Internal Repos Stolen
GitHub confirmed a breach involving the theft of approximately 4,000 internal repositories by the threat actor TeamPCP, who claimed responsibility and offered the stolen data for sale. The breach occurred through a compromised Visual Studio Code extension on an employee's device, and GitHub responded by removing the malicious extension, isolating the endpoint, rotating critical secrets, and continuing incident response investigations.
https://www.darkreading.com/application-security/github-confirms-breach-4k-internal-repos-stolen













