Morning Overview on MSN
Hackers just walked off with 3,800 of GitHub’s internal code repositories — smuggled out by a single poisoned plugin a GitHub developer trusted
Somewhere inside GitHub, a developer installed a Visual Studio Code extension. It looked like any other productivity plugin ...
GitHub hack exposed 3,800 internal repos through a poisoned VS Code extension, raising new concerns over developer supply ...
Morning Overview on MSN
GitHub just confirmed hackers broke into its own code through a poisoned coding tool — slipping in on a developer’s laptop without anyone noticing for days
Sometime in early 2025, an attacker slipped malicious code into a Visual Studio Code extension, and a GitHub employee ...
Introduction GitHub is the largest platform for software development and version control, enabling millions of developers to collaborate and share code.
Packagist packages hid malicious package.json scripts, enabling Linux binary execution during installs and workflows.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results