GitHub is currently investigating a security breach after the hacking group known as TeamPCP announced it is selling the platform's source code for a minimum of $50,000 on a cybercrime forum. The data purportedly includes approximately 4,000 repositories, with TeamPCP claiming that they do not intend to extort GitHub but will leak the information if a buyer is not found.
In response to the situation, GitHub has confirmed that there is no evidence of unauthorized access to customer information outside of its internal repositories. The Microsoft subsidiary stated it is monitoring its infrastructure closely for any further activity. If any impacts are identified, affected customers will be notified through established channels.
Additionally, GitHub reported that an employee's device was compromised due to a contaminated Microsoft Visual Studio Code extension. As a precautionary measure, the company has rotated essential credentials and conducted a thorough assessment, finding that the breach primarily involved internal repositories.
TeamPCP's claims of around 3,800 repositories being at risk align with GitHub's findings thus far. In a recent statement, TeamPCP criticized GitHub for delays in communication regarding the breach.