GitHub lost 3,800 internal repos after poisoned Nx Console update exposed developer credentials and supply-chain risk.
Morning Overview on MSN
Hackers just hit @antv inside wave 4 of the TeamPCP worm — the same crew that walked off with 3,800 of GitHub’s internal repositories two weeks ago
Sometime in late May 2026, a poisoned update slipped into the @antv family of JavaScript visualization libraries, the ...
A threat actor compromised an Nx developer and posed as a legitimate maintainer to publish a malicious extension on Visual ...
GitHub says the hackers who breached 3,800 internal repositories gained access via a malicious version of the Nx Console VS ...
GitHub CISO Alexis Wales confirmed Thursday that a poisoned build of the Nx Console Visual Studio Code extension — live on ...
XDA Developers on MSN
A poisoned VS Code extension led to a GitHub breach, and Microsoft owns every link in the chain
Microsoft has had a VS Code extension for a long time, and it finally came back to bite them.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results