The hacker group TeamPCP has carried out an extensive campaign of software supply chain attacks, compromising hundreds of open source software tools and impacting numerous organizations worldwide. The group recently breached GitHub by exploiting a malicious extension to access thousands of the platform’s own code repositories, highlighting a new scale and sophistication in these attacks.
What happened
On May 19, 2026, GitHub confirmed it was breached after a developer installed a compromised Visual Studio Code extension. This allowed TeamPCP to access around 4,000 GitHub repositories containing the platform’s proprietary code. The group publicly advertised the stolen GitHub source code for sale on the cybercriminal forum BreachForums, stating it had no interest in ransom but would leak the data if no buyer emerged.
GitHub is the latest victim in a spree of supply chain attacks by TeamPCP that have, in recent months, injected malware into more than 500 distinct open source software projects and over a thousand versions overall. These compromised tools have enabled the group to breach hundreds of companies that rely on them, including AI firm OpenAI and data contractor Mercor.
TeamPCP’s modus operandi involves infiltrating developer networks through widely used open source tools—such as the VSCode extension or the AntV visualization library—and embedding malware that steals credentials. These credentials then allow the hackers to publish malicious updates in other widely used software, creating a self-sustaining cycle of compromise.
Recently, TeamPCP has automated this process using a self-replicating worm named Mini Shai-Hulud, which spreads via infected GitHub repositories and steals encrypted credentials. The group also demonstrates affinity for high-profile exposure by publicly declaring its operations and using elaborate branding on its darknet sites.
Why it matters
Supply chain attacks like those conducted by TeamPCP represent a critical threat to the software ecosystem, undermining trust in open source tools that form the backbone of modern software development. By compromising developer tools themselves, these attacks can silently introduce malware into countless organizations’ networks at scale.
The GitHub breach alone threatens the intellectual property and security of a platform that hosts millions of developers’ code worldwide. Moreover, the group’s aggressive dissemination tactics and apparent willingness to sell stolen data—or leak it if demands are unmet—exacerbate the risks to organizations using affected software.
The widespread use of stolen credentials and long-lived authentication tokens is a key enabler of these attacks, emphasizing the need for rigorous credential management and security hygiene across enterprises.
Background
Software supply chain attacks have grown from rare, high-profile incidents to a persistent threat vector in cybersecurity. TeamPCP emerged in late 2025 initially exploiting cloud misconfigurations and vulnerabilities in web app tools to deploy botnets and steal credentials.
Over time, the group shifted focus to software supply chains, exploiting open source ecosystems and developer tools to implant malware that spreads across networks. Their operations include ransomware and data extortion, sometimes involving partnerships with cybercriminal forums to facilitate attacks and monetize stolen data.
The group first gained major recognition for its use of credential theft combined with self-spreading worms, and it continues to evolve with advanced automation and targeted campaigns against high-value organizations.
Experts recommend enhanced security practices such as token rotation, access restriction, delaying automatic updates to software libraries, and careful vetting of open source code changes to mitigate these threats.
Sources
This article is based on reporting and publicly available information from the following source:
Read more Cybersecurity stories on Goka World News.