Pith Wave Signal

5 stories tagged #VS Code

Newest Most read
  1. Microsoft Patches Critical VS Code Flaw That Exposed GitHub Tokens
    tech

    Microsoft Patches Critical VS Code Flaw That Exposed GitHub Tokens

    A one-click attack on VS Code could steal GitHub OAuth tokens. Microsoft patched the flaw in under 24 hours.

    2w ago 1 min read
  2. GitHub Breach: Hacker Group Steals 3,800 Internal Repos via Poisoned VS Code Extension
    tech

    GitHub Breach: Hacker Group Steals 3,800 Internal Repos via Poisoned VS Code Extension

    GitHub confirmed a breach where a poisoned VS Code extension led to the exfiltration of 3,800 internal repositories. Customer data was not impacted.

    last mo. 1 min read
  3. GitHub Breached: 3,800 Internal Repos Stolen via Poisoned VS Code Extension
    tech

    GitHub Breached: 3,800 Internal Repos Stolen via Poisoned VS Code Extension

    TeamPCP compromised GitHub via a malicious VS Code extension, stealing source code for Actions, Copilot, and CodeQL, now sold for $50,000.

    last mo. 1 min read
  4. GitHub Confirms Theft of 3,800 Internal Repos via Malicious VS Code Extension
    tech

    GitHub Confirms Theft of 3,800 Internal Repos via Malicious VS Code Extension

    A GitHub employee installed a poisoned VS Code extension, leading to the exfiltration of roughly 3,800 internal code repositories by hacker group TeamPCP.

    last mo. 1 min read
  5. GitHub Probes Data Breach After Employee Device Hijacked via Malicious VS Code Extension
    tech

    GitHub Probes Data Breach After Employee Device Hijacked via Malicious VS Code Extension

    GitHub investigates unauthorized access to internal repositories after an employee device was compromised. Hacker group TeamPCP claims to have stolen 4,000 private repos.

    last mo. 1 min read