GitHub confirms breach of 3,800 repos via malicious VSCode extension

Source: BleepingComputer  ·  Category: Ransomware & Breach

GitHub: 3,800 internal repositories breached via malicious VS Code extension installed by employee. Confirms GitHub is an active attack vector for developer-facing organizations. If firm develops software or stores sensitive code on GitHub, assess repository exposure and apply tighter extension controls.

→ Read the full article