THREATNOIR
Subscribe
Back to Feed
Supply ChainMay 20, 2026

GitHub confirms they were compromised after an employee device involving a poisoned VS Code exten...

GitHub confirms employee device compromise via malicious VS Code extension.

Read at source

Summary

GitHub disclosed that one of its employee devices was compromised through a poisoned VS Code extension, leading to unauthorized access. The incident represents a supply-chain attack vector targeting development tools. GitHub has investigated the incident and implemented additional security measures.

Indicators of Compromise

  • malware — poisoned VS Code extension

Entities

GitHub (vendor)VS Code (product)Visual Studio Code Extension (technology)