Portsuppe

Researcher publishes GitHub token-stealing exploit, blames Microsoft’s disclosure process

The Record by Recorded Future·41d·Reputable

The security researcher, Ammar Askar, released the new proof-of-concept exploit on his personal blog — alongside the public tracker for issues in VS Code — giving a GitHub security contact roughly one hour's notice beforehand.

Categories general-tech · cybersecurity · government-security · data-protection · unknown-it-category-15
Original source / advisory
Published
6/4/2026, 1:37:00 PM
Fetched
6/4/2026, 6:19:35 PM
Trust
reputable · 80/100
Language
en