# GitHub Internal Repositories Breached via Malicious VS Code Extension > GitHub confirmed a breach where attackers accessed 3,800 internal repositories through a poisoned Visual Studio Code extension, highlighting the growing threat of supply chain attacks on developer tools. **URL:** https://www.ciptadusa.com/blog/github-breach-vscode-extension-may-2026 **Type:** blog **Author:** PT Cipta Dua Saudara **Category:** Application Security **Published:** 2026-06-01 **Cover:** https://www.ciptadusa.com/media/blog/tech-2026/1780276036648-github-breach-vscode-2026.png ## Article ## What Happened On May 20, 2026, GitHub confirmed that attackers gained unauthorized access to its internal source code repositories after a poisoned Visual Studio Code extension compromised an employee endpoint. The breach involved data exfiltration from approximately **3,800 internal repositories**. GitHub broke the news in a numbered thread of five short posts on X (Twitter), with no entry on the official github.blog or githubstatus.com at the time of disclosure. The company's current assessment is that the activity involved exfiltration of **GitHub-internal repositories only**, with no impact to customer organizations, enterprises, or user repositories. ## The Attack Vector: Supply Chain Compromise The root cause was a **malicious VS Code extension** installed by a single GitHub employee. The strongest publicly available candidate, given the timing and attribution, is **nrwl.angular-console v18.95.0 (Nx Console)**, which was published to the VS Code Marketplace at 12:36 UTC on May 18 with malicious code injected into main.js. This attack is attributed to **TeamPCP** (aka UNC6780), a cybercrime group that specializes in supply chain attacks targeting open-source security utilities and AI middleware. ### Related Attacks in the Same Campaign TeamPCP's wave also included: - **@antv npm namespace compromise** - **actions-cool/issues-helper GitHub Action** weaponization ## Technical Analysis ### Attack Chain 1. **Initial Access**: Malicious VS Code extension published to marketplace 2. **Delivery**: Employee installs the poisoned extension (Nx Console v18.95.0) 3. **Execution**: Malicious code runs via VS Code's tasks.json auto-run system 4. **Persistence**: Attackers gain foothold on employee endpoint 5. **Lateral Movement**: Access to internal GitHub repositories 6. **Exfiltration**: 3,800 internal repos stolen ### Why This Is Significant The stolen repositories may contain: - Deployment scripts and infrastructure configuration - API documentation - Staging credentials - Architectural blueprints of GitHub itself While GitHub states no customer data was exposed, the breach represents a serious compromise of Microsoft's flagship developer platform's internal intellectual property. ## GitHub's Response Key actions taken by GitHub included: - Isolating the affected device - Removing the malicious extension from the marketplace - Rotating critical credentials - Initiating ongoing log analysis to monitor for further attacker activity ## Lessons for the Industry This incident underscores several critical security concerns: ### 1. Third-Party Code Risk VS Code extensions operate with significant privileges. Organizations should: - Audit installed extensions regularly - Verify extension publishers and review code when possible - Limit extension installation privileges for employees with access to sensitive systems ### 2. Supply Chain Security The same campaign compromised npm packages and GitHub Actions. Organizations should: - Implement software composition analysis (SCA) - Use hash verification for dependencies - Monitor for unusual activity in CI/CD pipelines ### 3. Endpoint Security Even trusted employees can be vectors. Defense-in-depth strategies should: - Limit privilege on developer workstations - Use hardware security keys for sensitive access - Implement runtime detection for unusual process activity ## Sources - Help Net Security (May 20, 2026): https://www.helpnetsecurity.com/2026/05/20/github-breached-teampcp - Wiz Research / Phoenix Security: https://phoenix.security/vs-code-extension-malware-github-breach-teampcp-2026 - Axipro: https://axipro.co/github-breach-may-2026 - NVD - CVE-2026-9110: https://nvd.nist.gov/vuln/detail/CVE-2026-9110 --- *Markdown version of https://www.ciptadusa.com/blog/github-breach-vscode-extension-may-2026 — generated for AI agents and LLM crawlers.*