Internal Network Compromise via Malicious VS Code Plugin
Internal Network Compromise via Malicious VS Code Plugin
A recent security incident occurring on May 20, 2026, initiated when a GitHub employee's device was compromised by a malicious VS Code extension. The attackers leveraged this access to successfully exfiltrate data from approximately 3,800 internal GitHub repositories. Although user data was reported untouched, it remains a painful misstep as the internal infrastructure was easily breached through a single third-party plugin.
security