A malicious VS code extension just breached GitHub ‘s internal repositories

A trojanized Visual Studio Code extension installed by a GitHub employee led to compromise of the endpoint and exfiltration of approximately 3,800 internal GitHub repositories; the group TeamPCP claimed responsibility and sought $50,000, while GitHub removed the extension, isolated the device, and initiated incident response but confirmed the data was already exfiltrated.