3,800 GitHub Repos Breached via Poisoned VS Code Extension by TeamPCP

The threat actor TeamPCP successfully breached approximately 3,800 internal GitHub repositories by utilizing a poisoned VS Code extension. The group is actively selling the stolen source code for $50,000.