Yesterday, GitHub announced it had experienced an incident in which an unauthorized user gained access to internal repositories. 

• What happened? GitHub discovered and contained a compromised employee device which included an impacted Microsoft Visual Studio Code extension. 
• Who is responsible? The cybercrime group TeamPCP has claimed responsibility for the attack and listed GitHub’s source code for $50,000 or more. 
• Who is impacted? Approximately 3,800 internal repositories are at risk. 

As the company’s internal repositories appear to be the focus of the attack, there is no evidence at this time that customers were impacted. Their enterprises, organizations, and repositories should be safe. However, GitHub is monitoring infrastructure for additional activity and will notify any customers it discovers may have been affected. 

TeamPCP does not appear to be ransoming this data. The group has stated they have no intentions of extorting GitHub, they simply want to sell the data to a single buyer.