TeamPCP hackers compromise GitHub in escalating supply chain offensive
The breach affects 3,800 repositories containing internal code, marking the latest in a series of attacks that have infected over 500 open source tools and impacted major technology firms.
The cybercriminal collective TeamPCP has executed a significant software supply chain attack against GitHub, compromising approximately 3,800 repositories. The breach was facilitated by a developer installing a poisoned extension for VSCode, a code editor also owned by Microsoft. GitHub confirmed that the affected repositories contained its own internal code rather than customer data, though the group has claimed access to around 4,000 repositories on the dark web marketplace BreachForums.
This incident represents the latest in a prolonged campaign by TeamPCP, which security firm Socket reports has conducted 20 waves of supply chain attacks in recent months. These operations have infected more than 500 distinct open source tools, creating a self-perpetuating cycle of compromise that has affected hundreds of organisations. Victims of this broader campaign include artificial intelligence firms Anthropic and OpenAI, as well as the European Commission.
TeamPCP utilises a self-spreading worm dubbed Mini Shai-Hulud to steal credentials and propagate malware across networks. The group’s tactics involve planting malicious code in tools commonly used by developers, such as the VSCode extension or the data visualisation software AntV. This allows the hackers to steal authentication tokens and publish malicious versions of other software development tools, expanding their reach through a flywheel of supply chain compromises.
The group has adopted a ransomware-as-a-service model since April, partnering with platforms including BreachForums and DragonForce. In the case of the GitHub breach, TeamPCP advertised the source code for sale, stating it would leak the data for free if no buyer was found. This approach highlights the group’s financial motivation and its willingness to exploit high-profile targets for maximum exposure and profit.
Security experts warn that the scale of these attacks necessitates stricter security hygiene. Ben Read of Wiz recommends implementing age-gating for open source updates to vet new code before installation, while Nathaniel Quist of Palo Alto Networks advises organisations to rotate authentication tokens immediately. The incident underscores the growing vulnerability of open source ecosystems and the importance of verifying updates before deployment.
