{"id":1009004,"date":"2026-05-21T12:00:20","date_gmt":"2026-05-21T06:30:20","guid":{"rendered":"https:\/\/telecomlive.in\/web\/?p=1009004"},"modified":"2026-05-21T12:00:20","modified_gmt":"2026-05-21T06:30:20","slug":"github-confirms-hacking-attack-says-we-detected-and-contained-a-compromise-of-an-employee-device-involving-a-poisoned","status":"publish","type":"post","link":"https:\/\/telecomlive.in\/web\/2026\/05\/21\/github-confirms-hacking-attack-says-we-detected-and-contained-a-compromise-of-an-employee-device-involving-a-poisoned\/","title":{"rendered":"GitHub confirms &#8216;hacking&#8217; attack; says: We detected and contained a compromise of an employee device involving a poisoned &#8230;"},"content":{"rendered":"<p>GitHub has confirmed a cyberattack involving unauthorized access to some of its internal repositories after a threat actor claimed it had stolen and was attempting to sell company data online. In a series of posts shared on X (formerly Twitter), the Microsoft-owned subsidiary said it has \u201cdetected and contained a compromise of an employee device involving a poisoned VS Code extension.\u201d Github further said the malicious extension was removed, the affected endpoint was isolated and incident response measures were launched immediately. The platform also stated that its \u201ccurrent assessment is that the activity involved exfiltration of GitHub-internal repositories only,\u201d while saying the attacker\u2019s claims of accessing around 3,800 repositories are \u201cdirectionally consistent\u201d with the company\u2019s investigation so far.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>GitHub has confirmed a cyberattack involving unauthorized access to some of its internal repositories after a threat actor claimed it had stolen and was attempting to sell company data online. In a series of posts shared on X (formerly Twitter), the Microsoft-owned subsidiary said it has \u201cdetected and contained a compromise of an employee device involving a poisoned VS Code extension.\u201d Github further said the malicious extension was removed, the affected endpoint was isolated and incident response measures were launched immediately. The platform also stated that its \u201ccurrent assessment is that the activity involved exfiltration of GitHub-internal repositories only,\u201d while [&hellip;]<\/p>\n","protected":false},"author":11,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[87,4,11],"tags":[],"class_list":["post-1009004","post","type-post","status-publish","format-standard","hentry","category-it-2-the-times-of-india","category-newspapers","category-the-times-of-india"],"acf":[],"_links":{"self":[{"href":"https:\/\/telecomlive.in\/web\/wp-json\/wp\/v2\/posts\/1009004","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/telecomlive.in\/web\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/telecomlive.in\/web\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/telecomlive.in\/web\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/telecomlive.in\/web\/wp-json\/wp\/v2\/comments?post=1009004"}],"version-history":[{"count":1,"href":"https:\/\/telecomlive.in\/web\/wp-json\/wp\/v2\/posts\/1009004\/revisions"}],"predecessor-version":[{"id":1009005,"href":"https:\/\/telecomlive.in\/web\/wp-json\/wp\/v2\/posts\/1009004\/revisions\/1009005"}],"wp:attachment":[{"href":"https:\/\/telecomlive.in\/web\/wp-json\/wp\/v2\/media?parent=1009004"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/telecomlive.in\/web\/wp-json\/wp\/v2\/categories?post=1009004"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/telecomlive.in\/web\/wp-json\/wp\/v2\/tags?post=1009004"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}