GitHub confirms 3,800 internal repos stolen through poisoned VS Code extension as supply chain worm hits Microsoft’s Python SDK

GitHub confirmed on May 20 that a poisoned VS Code extension installed on an employee’s device gave attackers access to roughly 3,800 internal repositories at the Microsoft-owned code storage and authorship platform. The threat group TeamPCP, formally tracked by Google Threat Intelligence Group as UNC6780, claimed responsibility and is advertising the stolen repositories for sale starting at $50,

Source

VentureBeat

Read full article at VentureBeat

Opens original article in a new tab

Peec, one of Berlin’s rising startups, more than doubled annualized revenue in months to $10M, sources say

Peec, which helps brands track their presence in AI searches, offers proof of a key trend among European startups.

about 2 hours agoRead more →

Wired

All Vehicles Sold in the EU Must Be Able to Hook Up to a Breathalyzer

The measure is part of a European Union–led strategy to eliminate all drunk-driving-related deaths and injuries by 2050.

about 2 hours agoRead more →

Wired3.0 · Center

Best Early Memorial Day Mattress Deals: Helix, Saatva (2026)

It’s one of the best times of the year to buy a mattress, and deals on our favorite models are in full swing.

about 2 hours agoRead more →

ZDNet

I've tested portable speakers from Bose, Sony, JBL, more - these deals are actually worth it

I found the best Bluetooth speaker deals for your holiday weekend festivities.

about 7 hours agoRead more →

Related Tech Stories

Peec, one of Berlin’s rising startups, more than doubled annualized revenue in months to $10M, sources say

All Vehicles Sold in the EU Must Be Able to Hook Up to a Breathalyzer

Best Early Memorial Day Mattress Deals: Helix, Saatva (2026)

I've tested portable speakers from Bose, Sony, JBL, more - these deals are actually worth it