GitHub, Grafana Labs breaches traced back to TanStack supply chain compromise
Source: Feeds2.Feedburner
Published:
<p>GitHub CISO Alexis Wales has named the malicious VS Code extension behind the breach they suffered at the hands of the threat group TeamPCP: Nx Console, a popular developer tool with 2.2 million installs. A malicious version of the otherwise benign extension was used to steal secrets and develope