EN
  • Cyber stability
  • Secops
  • Risks management
  • Digital transformation
  • Digital Sovereignty
  • Cybercrime
  • Industry and OT
  • Fraud
  • Digital identity
  • Cyber +
    • GitHub confirms it was hacked by TeamPCP

    GitHub confirms it was hacked by TeamPCP

    Written by
    The Editorial Team
    05.21.26
    Cybercrime
    01
    MIN
    GitHub confirms it was hacked by TeamPCP
    GitHub confirms it was hacked by TeamPCP
    GitHub confirms it was hacked by TeamPCP
    Image Massive data breach hits Asian football two months before the World Cup
    Cybercrime
    04.29.26 Cybercrime
    Next article
    Massive data breach hits Asian football two months before the World Cup
    Read
    01
    MIN
    Image Germany investigates Signal hack targeting its political class
    Cybercrime
    04.27.26 Cybercrime
    Next article
    Germany investigates Signal hack targeting its political class
    Read
    01
    MIN
    Image Child protection: UK regulator investigates Telegram and two teen chat sites
    Cybercrime
    04.22.26 Cybercrime
    Next article
    Child protection: UK regulator investigates Telegram and two teen chat sites
    Read
    01
    MIN
    Image Geert Baudewijns (Secutec): “Cyber negotiation is used to frame the situation very early on”
    Cyber +
    04.22.26 Cyber +
    Next article
    Geert Baudewijns (Secutec): “Cyber negotiation is used to frame the situation very early on”
    Read
    08
    MIN
    GitHub confirms it was hacked by TeamPCP The code-hosting platform says the incident did not compromise its customers’ personal data. GitHub said on May 20, 2026, that it was investigating an intrusion by the cybercriminal group TeamPCP into several thousand of its internal code repositories. The breach resulted from the compromise of an employee’s computer through a malicious extension. TeamPCP put the stolen repositories up for sale on a cybercriminal forum and threatened to leak them if no buyer came forward before an ultimatum expired. According to GitHub, the breach was “detected and contained”: it was limited to internal repositories and did not involve customers’ personal data. The company added that TeamPCP’s claims, which refer to the theft of around 3,800 repositories, are “broadly consistent” with its own estimate of the incident’s scale. First observed in late 2025, TeamPCP has specialized in supply-chain attacks. The group has notably targeted development tools such as TanStack, Trivy and LiteLLM. Its origin remains unknown, although several elements suggest connections to the Middle East.

    GitHub said on May 20, 2026, that it was investigating an intrusion by the cybercriminal group TeamPCP into several thousand of its internal code repositories. The breach resulted from the compromise of an employee’s computer through a malicious extension. TeamPCP put the stolen repositories up for sale on a cybercriminal forum and threatened to leak them if no buyer came forward before an ultimatum expired.

    According to GitHub, the breach was “detected and contained”: it was limited to internal repositories and did not involve customers’ personal data. The company added that TeamPCP’s claims, which refer to the theft of around 3,800 repositories, are “broadly consistent” with its own estimate of the incident’s scale.

    First observed in late 2025, TeamPCP has specialized in supply-chain attacks. The group has notably targeted development tools such as TanStack, Trivy and LiteLLM. Its origin remains unknown, although several elements suggest connections to the Middle East.

    The Editorial Team
    05.21.26
    Articles by the same author:
    1
    05.21.26 Cybercrime
    A 0-day attack against Huawei routers may have caused Luxembourg’s telecom outage in 2025
    Read
    01
    MIN
    2
    05.11.26 Cyber stability
    Canada: more than 42,000 data breaches in the tax system since 2020
    Read
    01
    MIN
    3
    05.11.26 Cyber stability
    Iranian APT group MuddyWater used Chaos ransomware as cover
    Read
    01
    MIN
    4
    05.11.26 Cyber stability
    Ukrainian hacktivist groups BO Team and Head Mare cooperate against Russian targets
    Read
    01
    MIN
    Image Massive data breach hits Asian football two months before the World Cup
    Cybercrime
    04.29.26 Cybercrime
    Next article
    Massive data breach hits Asian football two months before the World Cup
    Read
    01
    MIN
    Image Germany investigates Signal hack targeting its political class
    Cybercrime
    04.27.26 Cybercrime
    Next article
    Germany investigates Signal hack targeting its political class
    Read
    01
    MIN
    Image Child protection: UK regulator investigates Telegram and two teen chat sites
    Cybercrime
    04.22.26 Cybercrime
    Next article
    Child protection: UK regulator investigates Telegram and two teen chat sites
    Read
    01
    MIN
    Image Geert Baudewijns (Secutec): “Cyber negotiation is used to frame the situation very early on”
    Cyber +
    04.22.26 Cyber +
    Next article
    Geert Baudewijns (Secutec): “Cyber negotiation is used to frame the situation very early on”
    Read
    08
    MIN
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.