Product
GitHub experienced a breach affecting 3,800 internal repositories due to a supply chain attack targeting TanStack npm packages; the attacker compromised an employee's machine via a malicious version of the Nx Console VS Code extension and gained access to internal GitHub repositories by stealing credentials and secrets.