GitHub confirms breach of 3,800 repos via malicious VSCode extension

GitHub 确认 3,800 个代码仓库因恶意 VSCode 插件遭泄露

By Sergiu Gatlan May 20, 2026 04:14 AM 作者：Sergiu Gatlan，2026年5月20日 上午 04:14

GitHub has confirmed that roughly 3,800 internal repositories were breached after one of its employees installed a malicious VS Code extension. The company has since removed the unnamed trojanized extension from the VS Code marketplace and has secured the compromised device. GitHub 已确认，在一名员工安装了恶意 VS Code 插件后，约 3,800 个内部代码仓库遭到泄露。目前，该公司已从 VS Code 市场中移除了该未具名的木马插件，并已对受感染的设备进行了安全加固。

“Yesterday we detected and contained a compromise of an employee device involving a poisoned VS Code extension. We removed the malicious extension version, isolated the endpoint, and began incident response immediately,” the company said. “Our current assessment is that the activity involved exfiltration of GitHub-internal repositories only. The attacker’s current claims of ~3,800 repositories are directionally consistent with our investigation so far.” “昨天，我们检测并控制了一起涉及中毒 VS Code 插件的员工设备入侵事件。我们移除了该恶意插件版本，隔离了终端，并立即启动了事件响应，”该公司表示。“我们目前的评估显示，此次活动仅涉及 GitHub 内部代码仓库的数据外泄。攻击者声称的约 3,800 个仓库与我们目前的调查结果基本一致。”

This comes after GitHub told BleepingComputer on Tuesday evening that it was investigating claims of unauthorized access to its internal repositories and added that it has no evidence that customer data stored outside the affected repos has been affected. 此前，GitHub 在周二晚间告诉 BleepingComputer，他们正在调查有关其内部仓库被未经授权访问的指控，并补充称，目前没有证据表明受影响仓库之外的客户数据受到了波及。

While GitHub has yet to attribute the breach, the TeamPCP hacker group claimed access to GitHub source code and “~4,000 repos of private code” on the Breached cybercrime forum on Tuesday, asking for at least $50,000 for the stolen data. 虽然 GitHub 尚未确定此次入侵的归属，但黑客组织 TeamPCP 周二在 Breached 网络犯罪论坛上声称，他们获取了 GitHub 的源代码和“约 4,000 个私有代码仓库”，并要求以至少 5 万美元的价格出售这些被盗数据。

“As always this is not a ransom, We do not care about extorting Github, 1 buyer and we shred the data on our end, it looks like our retirement is soon so if no buyer is found we will leak it free,” the cybercriminals said. “If you are interested. Send your offers to the communications below, we are not interested in under 50k, the best offer will get it.” “和往常一样，这不是勒索。我们不在乎敲诈 GitHub，只要有一个买家，我们就会销毁手中的数据。看起来我们快要退休了，如果没有买家，我们将免费泄露这些数据，”这些网络罪犯表示。“如果你感兴趣，请将报价发送到下方的联系方式。低于 5 万美元的报价我们不予考虑，价高者得。”

TeamPCP was previously linked to massive supply chain attacks targeting developer code platforms, including GitHub, PyPI, NPM, and Docker, and, more recently, to the “Mini Shai-Hulud” supply chain campaign (which also impacted two OpenAI employees). TeamPCP 此前曾与针对开发者代码平台（包括 GitHub、PyPI、NPM 和 Docker）的大规模供应链攻击有关，最近还涉及“Mini Shai-Hulud”供应链攻击活动（该活动也影响了两名 OpenAI 员工）。

VS Code extensions are plugins that can be installed from the VS Code Marketplace (the official store for add-ons for Microsoft’s code editor) to add features or integrate tools into the editor. This isn’t the first time a trojanized VS Code extension has been spotted on the marketplace, as multiple other malicious extensions with millions of installs have been used to steal developer credentials and other sensitive data over the last several years. VS Code 插件是从 VS Code 市场（微软代码编辑器的官方插件商店）安装的插件，用于增加功能或将工具集成到编辑器中。这并非首次在市场上发现植入木马的 VS Code 插件，过去几年中，多个拥有数百万次安装量的恶意插件曾被用于窃取开发者凭据和其他敏感数据。

For instance, last year, VSCode extensions with 9 million installs were pulled over security risks, and 10 more, posing as legitimate development tools, infected users with the XMRig cryptominer. Later in the year, a malicious extension with basic ransomware capabilities snuck onto the VS Code marketplace after a threat actor named WhiteCobra flooded it with 24 crypto-stealing extensions. More recently, in January, two malicious extensions advertised as AI-based coding assistants with 1.5 million installs exfiltrated data from compromised developer systems to servers in China. 例如，去年，安装量达 900 万次的 VSCode 插件因安全风险被下架，另有 10 个伪装成合法开发工具的插件感染了用户的 XMRig 加密货币挖矿程序。同年晚些时候，在威胁行为者 WhiteCobra 用 24 个加密货币窃取插件进行“轰炸”后，一个具备基础勒索软件功能的恶意插件潜入了 VS Code 市场。最近在 1 月份，两个宣称为 AI 编程助手、安装量达 150 万次的恶意插件，将受感染开发者系统中的数据外泄到了中国的服务器。

GitHub’s cloud-based platform is now used by over 4 million organizations (including 90% of the Fortune 100) and more than 180 million developers who contribute to over 420 million code repositories. GitHub 的云平台目前被超过 400 万家组织（包括 90% 的财富 100 强企业）和超过 1.8 亿名开发者使用，他们为超过 4.2 亿个代码仓库做出了贡献。