Portsuppe

Attack on GitHub.dev steals the OAuth token for all repos

Heise Security (DE)·40d·Reputable

A vulnerability in Github.dev - VS Code in the browser - allowed attackers to contaminate all of a user's repos to launch various attacks.

Categories cybersecurity · government-security · data-protection
Original source / advisory
Published
6/5/2026, 11:58:00 AM
Fetched
6/10/2026, 9:19:34 AM
Trust
reputable · 80/100
Language
de