GitHub ~3,800 internal repos compromised through a malicious VS Code extension
Source: Reddit
Published:
<p>The entry point wasn’t a CVE. It was a VS Code extension. One GitHub employee installed a malicious extension. That single install gave attackers access to secrets on the device. Those secrets were used to move laterally into ~3,800 private internal repositories. GitHub’s own investigation called