A hacker group is poisoning open source code at an unprecedented scale
Summary
A hacker group called TeamPCP has been carrying out frequent attacks by secretly adding harmful code to open source software used by many developers. Recently, they broke into GitHub, a major platform for software, and accessed thousands of code projects, aiming to sell the stolen internal code. This is part of an ongoing pattern where the hackers infect software tools, spreading malware and stealing data from many companies.Key Facts
- TeamPCP is a hacker group focused on software supply chain attacks, where they add malicious code to trusted software.
- They recently hacked GitHub by installing a harmful extension in a popular coding tool called VSCode.
- The hackers accessed about 4,000 GitHub code repositories, mostly containing GitHub’s own internal code.
- TeamPCP has attacked over 500 different software projects in recent months.
- Their attacks have affected many companies, including GitHub, OpenAI, and Mercor.
- The group uses a cycle where they infect software developers’ tools, which then spread the malware to more developers and companies.
- TeamPCP has automated some attacks using a worm (a self-spreading program) named Mini Shai-Hulud.
- Their goal includes stealing credentials and selling stolen code on hacking forums.
Read the Full Article
This is a fact-based summary from The Actual News. Click below to read the complete story directly from the original source.