GitHub Confirms Breach of 3,800 Repositories via Malicious VS Code Extension

GitHub confirmed a breach affecting approximately 3,800 internal repositories after an employee installed a malicious VS Code extension. The unnamed trojanized extension was removed from the VS Code marketplace, and the compromised employee device was secured. The incident was detected and contained the day before the report, though no specific date was provided. No technical details about the malware, attack vector, or CVE identifiers were disclosed. The breach was limited to internal repositories, with no mention of customer data or public repositories being impacted.