GitHub has confirmed a breach after hackers from TeamPCP said they stole about 4,000 internal repositories and tried to sell the code for $50,000. The company says there is no sign yet that customer repositories or user data were affected, but that could change as the investigation continues. The attack reportedly started with an employee device compromised through a malicious Visual Studio Code extension, a reminder that supply-chain attacks still target developer tools as much as platforms.
What TeamPCP says it took from GitHub
According to the report cited in the source, TeamPCP claims access to a large stash of GitHub internal repositories rather than public-facing project data. That distinction matters: internal code can still expose infrastructure details, security processes, and unreleased product work, even if customer data is untouched. It also gives attackers leverage, because stolen internal material is easier to threaten than to fully weaponize.
- Reported haul: about 4,000 internal repositories
- Ransom demand: $50,000
- Backup threat: public release if no buyer appears
GitHub breach raises familiar code theft risks
This kind of breach is familiar territory for software companies: if criminals can get into a developer workstation, they may not need to break the main platform at all. Google, Microsoft, and other major vendors have spent years hardening developer environments for exactly this reason, because an infected extension or plugin can become a shortcut around the front door. The ugly part is that the damage can be quiet at first, which makes public confirmation slower than the headlines.
What GitHub says users should watch for
For now, GitHub’s message is limited: internal repositories appear to be the target, and there is no current evidence of customer repo exposure. If that changes, the company says it will notify users. The bigger question is whether this turns out to be a one-off extortion attempt or another reminder that developer tooling is now part of the attack surface, not some safe little box off to the side.