GitHub Internal Repositories Breached via Malicious Nx Console VS Code Extension

GitHub confirmed a supply-chain compromise where a trojanized Nx Console (nrwl.angular-console) VS Code extension—attributed to the cybercriminal group TeamPCP—was used to distribute a credential-stealer that harvested secrets (1Password, npm, GitHub, AWS, Anthropic) and enabled exfiltration of roughly 3,800 internal GitHub repositories; the malicious extension was live for only 18 minutes but was sufficient to compromise developer systems and highlights systemic risks in auto-update and developer-tool distribution.