GitHub confirms breach, 3,800 internal repos exfiltrated via malicious VS Code extension
techMay 21, 20262668
abadidea
@0xabad1dea.infosec.exchange.ap.brid.gy
info on the github breach appears to only be available on xitter 🙄 , I fished it out for you. #github
3559d ago
gonna gently push back that there's no reason (according to github's version of the story) to associate this with AI or with spectacular incompetence on the part of the employee; the issue is that industry standard, extremely widely used text editor Visual Studio Code has a big button that says […]
@0xabad1dea My favorite take so far: "holy shit, how did the attackers find a large enough uptime window to get in?"
@0xabad1dea thank you for the fishing