INSPECTING ARCHIVED INTELLIGENCE (OUTDATED VERSION).
Supply Chain Compromises Impact Nx Console and GitHub Repos
| 2026-05-21 14:45 HIGH HIGHExecutive Summary AI-generated
The recent incidents of malicious software compromise and unauthorized access to GitHub repositories via a poisoned third-party VS Code extension have exposed vulnerabilities in enterprise, cloud, and DevOps environments. These threats exploit tools like Nx Console that support CI/CD pipelines, code extensions, and workflows, demonstrating the sophistication of cyber threat actors who are leveraging these compromised systems for their own malicious purposes. The malicious actions carried out by these attackers include injecting malicious GitHub Action workflows to harvest sensitive data from public repositories, highlighting the need for robust security measures in software supply chain management. As a result, CISA is prioritizing the response to multiple emerging software supply chain intrusion campaigns targeting developer ecosystems and urging organizations to conduct forensics reviews of CI/CD logs, cloud audit trails, and affected developer machines.
Technical Mitigations AI-generated
• Implement secure workflow auditing and monitoring: Regularly audit CI/CD pipeline files, contributor activity, and direct commits to detect suspicious changes. Use tools like GitHub's "Security Advisory" feature or third-party security solutions to monitor for potential compromises.
• Use pinning mechanisms with package repositories: Pin software versions in package repos to specific trusted versions to prevent malicious packages from being pulled during the build process. This can be achieved by using tools like `docker tag` and `docker pull` with pinned tags, or by manually pinning software versions in your CI/CD pipelines.
• Implement three-hour waiting period before pulling new packages: When downloading new packages, wait at least three hours to ensure that any malicious or unscreened packages have been identified and removed from the community. This can be achieved through tools like `docker pull` with a pinned tag or by manually pinning software versions in your CI/CD pipelines.
• Use secure VS Code extensions: Regularly update and use trusted, verified VS Code extensions to minimize the risk of compromising your system. Use extension managers like Microsoft's Extension Manager or third-party extension repositories that have been vetted for security.
• Implement cloud audit trails and API key rotation: Monitor cloud audit trails and rotate/revoke all secrets accessible to CI/CD pipelines, including API keys, cloud provider credentials (e.g., AWS, Google Cloud Platform), SSH keys, Docker/npm/PyPI/Vault/Terraform/Kubernetes tokens, GitHub/GitLab/Bitbucket tokens, and developer or pipeline secrets.
Intelligence Metadata
Actors / Malware / CVEs / Campaigns
Shai-HuludShai-Hulud
CVE-2026-48027CVE-2026-48027
Target & Sectors
CI
Incident Timeline
May 18
Threat actors used a malicious version of Vx Console to upload an unauthorized copy of the 18.95.0 software update to Visual Studio Marketplace on May 18.
Click on any entity below to view its context and source!
infrastructure
Visual Studio Code
In
a report
published on GitHub, Cross explained that a malicious version of Vx Console (version 18.95.0) was uploaded to Visual Studio Marketplace and Open VSX, an open-source extension registry for Visual Studio Code–compatible editors, on May 18.
infrastructure
18.95.0
In
a report
published on GitHub, Cross explained that a malicious version of Vx Console (version 18.95.0) was uploaded to Visual Studio Marketplace and Open VSX, an open-source extension registry for Visual Studio Code–compatible editors, on May 18.
organisation
Cross
In
a report
published on GitHub, Cross explained that a malicious version of Vx Console (version 18.95.0) was uploaded to Visual Studio Marketplace and Open VSX, an open-source extension registry for Visual Studio Code–compatible editors, on May 18.
organisation
Visual Studio Marketplace
In
a report
published on GitHub, Cross explained that a malicious version of Vx Console (version 18.95.0) was uploaded to Visual Studio Marketplace and Open VSX, an open-source extension registry for Visual Studio Code–compatible editors, on May 18.
May 18, 2026
Threat actors used a malicious 'Nx Console' VS Code extension to target automated accounts.
May 19
Threat actors used a malicious 'Nx Console' VS Code extension to gain unauthorized access.
Click on any entity below to view its context and source!
infrastructure
Vs Code
The security team at the Microsoft-owed software developer platform warned on May 19 that
an attacker gained unauthorized access to 3800 internal repositories
via a “poisoned” VS Code extension found on an employee device.
organisation
Microsoft
The security team at the Microsoft-owed software developer platform warned on May 19 that
an attacker gained unauthorized access to 3800 internal repositories
via a “poisoned” VS Code extension found on an employee device.
general_metric
3800 internal repositories
The security team at the Microsoft-owed software developer platform warned on May 19 that
an attacker gained unauthorized access to 3800 internal repositories
via a “poisoned” VS Code extension found on an employee device.
19 May
GitHub removed the malicious VS Code extension version and isolated its endpoint following an incident.
2026/05/20
Threat actors used the 'Nx Console' VS Code extension to target GitHub.
2026/05/21
The malicious 'Nx Console' VS Code extension was distributed through the automatic update mechanism of Visual Studio Marketplace, allowing systems with installed Nx Console to receive a compromised build without manual installation action.
Click on any entity below to view its context and source!
infrastructure
Vs Code
GitHub Breach Traced to Malicious 'Nx Console' VS Code Extension.
GitHub has confirmed that a recent breach into its internal repositories was caused by a vulnerability in a Microsoft Visual Studio Code (VS Code) extension called ‘Nx Console.’
It was later
confirmed by Jeff Cross
, CEO of Nx that Nx Console, a popular VS Code extension, was the extensions that was poisoned extension and resulted in the GitHub breach.
3800 GitHub Internal Repositories Stolen
While the time window may appear short, it was long enough to infect many open-source project contributors running VS Code with the Nx Console extension installed and auto-update enabled.
Threat actors leveraged a prior compromise of Nx developer systems to compromise a GitHub employee’s device through a poisoned third-party VS Code extension, resulting in unauthorized access and exfiltration of internal GitHub repositories.
These recent incidents, including the GitHub compromise via a malicious Nx Console Visual Studio Code (VS Code) extension and the “Megalodon” supply chain intrusion campaign, demonstrate how cyber threat actors are abusing tools and processes that support enterprise, cloud, and DevOps environments—specifically CI/CD pipelines, code extensions and workflows.
The malicious extension version (18.95.0) was distributed through VS Code’s automatic update mechanism, meaning systems with Nx Console previously installed may have received the malicious build without developers taking any manual installation action.
organisation
GitHub Breach Traced
GitHub Breach Traced to Malicious 'Nx Console' VS Code Extension.
infrastructure
Visual Studio Code
GitHub has confirmed that a recent breach into its internal repositories was caused by a vulnerability in a Microsoft Visual Studio Code (VS Code) extension called ‘Nx Console.’
These recent incidents, including the GitHub compromise via a malicious Nx Console Visual Studio Code (VS Code) extension and the “Megalodon” supply chain intrusion campaign, demonstrate how cyber threat actors are abusing tools and processes that support enterprise, cloud, and DevOps environments—specifically CI/CD pipelines, code extensions and workflows.
organisation
GitHub
GitHub has confirmed that a recent breach into its internal repositories was caused by a vulnerability in a Microsoft Visual Studio Code (VS Code) extension called ‘Nx Console.’
Threat actors leveraged a prior compromise of Nx developer systems to compromise a GitHub employee’s device through a poisoned third-party VS Code extension, resulting in unauthorized access and exfiltration of internal GitHub repositories.
organisation
Microsoft Visual Studio Code
GitHub has confirmed that a recent breach into its internal repositories was caused by a vulnerability in a Microsoft Visual Studio Code (VS Code) extension called ‘Nx Console.’
organisation
DevOps
These recent incidents, including the GitHub compromise via a malicious Nx Console Visual Studio Code (VS Code) extension and the “Megalodon” supply chain intrusion campaign, demonstrate how cyber threat actors are abusing tools and processes that support enterprise, cloud, and DevOps environments—specifically CI/CD pipelines, code extensions and workflows.
organisation
CI
These recent incidents, including the GitHub compromise via a malicious Nx Console Visual Studio Code (VS Code) extension and the “Megalodon” supply chain intrusion campaign, demonstrate how cyber threat actors are abusing tools and processes that support enterprise, cloud, and DevOps environments—specifically CI/CD pipelines, code extensions and workflows.
infrastructure
18.95.0
The malicious extension version (18.95.0) was distributed through VS Code’s automatic update mechanism, meaning systems with Nx Console previously installed may have received the malicious build without developers taking any manual installation action.
organisation
Vault
The compromised extension fetched an obfuscated payload that harvested credentials from multiple sources on disk and in memory:
Vault: ~/.vault-token, /etc/vault/token; Kubernetes and AWS IAM auth
Npm: .npmrc tokens and OIDC token exchange
AWS: IMDS/ECS metadata, Secrets Manager, SSM, Web Identity tokens
GitHub: ghp_/gho_/ghs_ tokens, Actions secrets, process memory
1Password: op CLI vault contents, if an op session was active
Filesystem: private keys, connection strings, GCP/Docker credentials
The issue has been allocated a vulnerability identifier, CVE-2026-48027.
organisation
Kubernetes
The compromised extension fetched an obfuscated payload that harvested credentials from multiple sources on disk and in memory:
Vault: ~/.vault-token, /etc/vault/token; Kubernetes and AWS IAM auth
Npm: .npmrc tokens and OIDC token exchange
AWS: IMDS/ECS metadata, Secrets Manager, SSM, Web Identity tokens
GitHub: ghp_/gho_/ghs_ tokens, Actions secrets, process memory
1Password: op CLI vault contents, if an op session was active
Filesystem: private keys, connection strings, GCP/Docker credentials
The issue has been allocated a vulnerability identifier, CVE-2026-48027.
organisation
AWS IAM
The compromised extension fetched an obfuscated payload that harvested credentials from multiple sources on disk and in memory:
Vault: ~/.vault-token, /etc/vault/token; Kubernetes and AWS IAM auth
Npm: .npmrc tokens and OIDC token exchange
AWS: IMDS/ECS metadata, Secrets Manager, SSM, Web Identity tokens
GitHub: ghp_/gho_/ghs_ tokens, Actions secrets, process memory
1Password: op CLI vault contents, if an op session was active
Filesystem: private keys, connection strings, GCP/Docker credentials
The issue has been allocated a vulnerability identifier, CVE-2026-48027.
organisation
ECS
The compromised extension fetched an obfuscated payload that harvested credentials from multiple sources on disk and in memory:
Vault: ~/.vault-token, /etc/vault/token; Kubernetes and AWS IAM auth
Npm: .npmrc tokens and OIDC token exchange
AWS: IMDS/ECS metadata, Secrets Manager, SSM, Web Identity tokens
GitHub: ghp_/gho_/ghs_ tokens, Actions secrets, process memory
1Password: op CLI vault contents, if an op session was active
Filesystem: private keys, connection strings, GCP/Docker credentials
The issue has been allocated a vulnerability identifier, CVE-2026-48027.
organisation
CLI
The compromised extension fetched an obfuscated payload that harvested credentials from multiple sources on disk and in memory:
Vault: ~/.vault-token, /etc/vault/token; Kubernetes and AWS IAM auth
Npm: .npmrc tokens and OIDC token exchange
AWS: IMDS/ECS metadata, Secrets Manager, SSM, Web Identity tokens
GitHub: ghp_/gho_/ghs_ tokens, Actions secrets, process memory
1Password: op CLI vault contents, if an op session was active
Filesystem: private keys, connection strings, GCP/Docker credentials
The issue has been allocated a vulnerability identifier, CVE-2026-48027.
organisation
Filesystem
The compromised extension fetched an obfuscated payload that harvested credentials from multiple sources on disk and in memory:
Vault: ~/.vault-token, /etc/vault/token; Kubernetes and AWS IAM auth
Npm: .npmrc tokens and OIDC token exchange
AWS: IMDS/ECS metadata, Secrets Manager, SSM, Web Identity tokens
GitHub: ghp_/gho_/ghs_ tokens, Actions secrets, process memory
1Password: op CLI vault contents, if an op session was active
Filesystem: private keys, connection strings, GCP/Docker credentials
The issue has been allocated a vulnerability identifier, CVE-2026-48027.
organisation
GCP/Docker
The compromised extension fetched an obfuscated payload that harvested credentials from multiple sources on disk and in memory:
Vault: ~/.vault-token, /etc/vault/token; Kubernetes and AWS IAM auth
Npm: .npmrc tokens and OIDC token exchange
AWS: IMDS/ECS metadata, Secrets Manager, SSM, Web Identity tokens
GitHub: ghp_/gho_/ghs_ tokens, Actions secrets, process memory
1Password: op CLI vault contents, if an op session was active
Filesystem: private keys, connection strings, GCP/Docker credentials
The issue has been allocated a vulnerability identifier, CVE-2026-48027.
organisation
the Visual Studio Marketplace
Nx Console is a popular extension, with 2.2 million installs on the Visual Studio Marketplace and a verified publisher badge.
infrastructure
2.2 installs
Nx Console is a popular extension, with 2.2 million installs on the Visual Studio Marketplace and a verified publisher badge.
organisation
UTC
The upload was completed at 12.30 UTC by an individual who posed as a legitimate Nx maintainer.
organisation
TanStackn
Cross explained that the person managed to gain the GitHub credentials of a legitimate Nx developer through
a recent supply-chain compromise of TanStackn pm packages
.
organisation
the Mini
This was part of a broader supply chain attack affecting developer ecosystems, commonly known as
the Mini Shai-Hulud campaign
.
organisation
TanStack
TanStack is a collection of open-source developer tools for building modern web apps, especially focused on state management, data fetching, tables, routing and virtualization.
organisation
SSH
Anyone in this situation should assume they were compromised and should rotate any authentication keys stored on disk, including tokens, secrets, SSH keys and any type of credentials.
Rotate/revoke all secrets including: all credentials, tokens, and secrets accessible to CI/CD pipelines, including API keys, cloud provider credentials (Amazon Web Services, Google Cloud Platform, Microsoft Azure), SSH keys, Docker/npm/PyPI/Vault/Terraform/Kubernetes tokens, GitHub/GitLab/Bitbucket tokens, and developer or pipeline secrets.
organisation
Rotate
Rotate/revoke all secrets including: all credentials, tokens, and secrets accessible to CI/CD pipelines, including API keys, cloud provider credentials (Amazon Web Services, Google Cloud Platform, Microsoft Azure), SSH keys, Docker/npm/PyPI/Vault/Terraform/Kubernetes tokens, GitHub/GitLab/Bitbucket tokens, and developer or pipeline secrets.
organisation
API
Rotate/revoke all secrets including: all credentials, tokens, and secrets accessible to CI/CD pipelines, including API keys, cloud provider credentials (Amazon Web Services, Google Cloud Platform, Microsoft Azure), SSH keys, Docker/npm/PyPI/Vault/Terraform/Kubernetes tokens, GitHub/GitLab/Bitbucket tokens, and developer or pipeline secrets.
organisation
Microsoft Azure
Rotate/revoke all secrets including: all credentials, tokens, and secrets accessible to CI/CD pipelines, including API keys, cloud provider credentials (Amazon Web Services, Google Cloud Platform, Microsoft Azure), SSH keys, Docker/npm/PyPI/Vault/Terraform/Kubernetes tokens, GitHub/GitLab/Bitbucket tokens, and developer or pipeline secrets.
organisation
PyPI/Vault/Terraform/Kubernetes
Rotate/revoke all secrets including: all credentials, tokens, and secrets accessible to CI/CD pipelines, including API keys, cloud provider credentials (Amazon Web Services, Google Cloud Platform, Microsoft Azure), SSH keys, Docker/npm/PyPI/Vault/Terraform/Kubernetes tokens, GitHub/GitLab/Bitbucket tokens, and developer or pipeline secrets.
organisation
GitHub/GitLab/Bitbucket
Rotate/revoke all secrets including: all credentials, tokens, and secrets accessible to CI/CD pipelines, including API keys, cloud provider credentials (Amazon Web Services, Google Cloud Platform, Microsoft Azure), SSH keys, Docker/npm/PyPI/Vault/Terraform/Kubernetes tokens, GitHub/GitLab/Bitbucket tokens, and developer or pipeline secrets.
organisation
Team PCP Allegedly Selling GitHub Repos
Team PCP Allegedly Selling GitHub Repos for $95,000
The breach was claimed by the TeamPCP hacking group.
organisation
Lapsus$
The group first demanded “at least $50,000” for the stolen data before
reportedly posting an ad
in which TeamPCP appears to partner with the Lapsus$ threat group to sell the stolen data for $95,000.
financial
$50,000 group
The group first demanded “at least $50,000” for the stolen data before
reportedly posting an ad
in which TeamPCP appears to partner with the Lapsus$ threat group to sell the stolen data for $95,000.
organisation
Supply Chain Compromises Impact Nx Console
Supply Chain Compromises Impact Nx Console and GitHub Repositories.
organisation
GitHub Repositories
Supply Chain Compromises Impact Nx Console and GitHub Repositories.
organisation
Megalodon
Additionally, in a campaign known as “Megalodon,” a cyber threat actor injected malicious GitHub Action workflows to harvest CI/CD secrets, cloud credentials, and tokens, impacting both development and deployment pipelines in public GitHub repositories.
organisation
GitHub Action
Additionally, in a campaign known as “Megalodon,” a cyber threat actor injected malicious GitHub Action workflows to harvest CI/CD secrets, cloud credentials, and tokens, impacting both development and deployment pipelines in public GitHub repositories.
organisation
Notify
Notify proper stakeholders if necessary.
Tactical Metrics
Metrics
infrastructure
Vs Code
Affected Product
Click for context!
GitHub Breach Traced to Malicious 'Nx Console' VS Code Extension.
GitHub has confirmed that a recent breach into its internal repositories was caused by a vulnerability in a Microsoft Visual Studio Code (VS Code) extension called ‘Nx Console.’
The security team at the Microsoft-owed software developer platform warned on May 19 that
an attacker gained unauthorized access to 3800 internal repositories
via a “poisoned” VS Code extension found on an employee device.
It was later
confirmed by Jeff Cross
, CEO of Nx that Nx Console, a popular VS Code extension, was the extensions that was poisoned extension and resulted in the GitHub breach.
3800 GitHub Internal Repositories Stolen
While the time window may appear short, it was long enough to infect many open-source project contributors running VS Code with the Nx Console extension installed and auto-update enabled.
Threat actors leveraged a prior compromise of Nx developer systems to compromise a GitHub employee’s device through a poisoned third-party VS Code extension, resulting in unauthorized access and exfiltration of internal GitHub repositories.
These recent incidents, including the GitHub compromise via a malicious Nx Console Visual Studio Code (VS Code) extension and the “Megalodon” supply chain intrusion campaign, demonstrate how cyber threat actors are abusing tools and processes that support enterprise, cloud, and DevOps environments—specifically CI/CD pipelines, code extensions and workflows.
The malicious extension version (18.95.0) was distributed through VS Code’s automatic update mechanism, meaning systems with Nx Console previously installed may have received the malicious build without developers taking any manual installation action.
Metrics
infrastructure
Visual Studio Code
Affected Product
GitHub has confirmed that a recent breach into its internal repositories was caused by a vulnerability in a Microsoft Visual Studio Code (VS Code) extension called ‘Nx Console.’
In
a report
published on GitHub, Cross explained that a malicious version of Vx Console (version 18.95.0) was uploaded to Visual Studio Marketplace and Open VSX, an open-source extension registry for Visual Studio Code–compatible editors, on May 18.
These recent incidents, including the GitHub compromise via a malicious Nx Console Visual Studio Code (VS Code) extension and the “Megalodon” supply chain intrusion campaign, demonstrate how cyber threat actors are abusing tools and processes that support enterprise, cloud, and DevOps environments—specifically CI/CD pipelines, code extensions and workflows.
Metrics
infrastructure
18.95.0
Software Version
In
a report
published on GitHub, Cross explained that a malicious version of Vx Console (version 18.95.0) was uploaded to Visual Studio Marketplace and Open VSX, an open-source extension registry for Visual Studio Code–compatible editors, on May 18.
The malicious extension version (18.95.0) was distributed through VS Code’s automatic update mechanism, meaning systems with Nx Console previously installed may have received the malicious build without developers taking any manual installation action.
Metrics
infrastructure
2,200,000
Installs
Nx Console is a popular extension, with 2.2 million installs on the Visual Studio Marketplace and a verified publisher badge.
Metrics
financial
50,000
Group
The group first demanded “at least $50,000” for the stolen data before
reportedly posting an ad
in which TeamPCP appears to partner with the Lapsus$ threat group to sell the stolen data for $95,000.
Intelligence Sources
Infosecurity-Magazine
2026-05-21
GitHub Breach Traced to Malicious 'Nx Console' VS Code Extension
Infosecurity-Magazine
Infosecurity-Magazine
2026-05-21
GitHub Breach Traced to Malicious 'Nx Console' VS Code Extension
Infosecurity-Magazine
CISA
2026-05-28
Unpublish from Social Media?
Are you sure you want to delete this podcast video from all synchronized social networks (YouTube, Facebook, Threads)?
Important:
Due to Meta API restrictions, Instagram Reels cannot be deleted automatically via API by third-party apps.
View Profile to Delete Manually
View Profile to Delete Manually
Tactical Intelligence
Report Intelligence Issue
Podcast Options
Generate
Incident Version History
CURRENT VERSION
Last Updated: 2026-06-29T06:20
Comprehensive Tactical Telemetry
Highly Correlated Entities
33x
organisation
Identified Entity
GitHub Breach Traced
entity
7x
timeline
Temporal Reference
May 19
date
3x
attribution
Attributing Entity
KEV
authority
2x
infrastructure
Affected Product
Vs Code
software
2x
tactic
MITRE ATT&CK Technique
T1588.006 - Vulnerabilities
technique
Contextual Telemetry
Context Block
10 METRICS
general metric
Internal Repositories
3,800
internal repositories
infrastructure
Software Version
18.95.0
version
vulnerability
Exploited CVE
CVE-2026-48027
cve
infrastructure
Installs
2,200,000
installs
general metric
Utc
12
utc
malware
Malware Payload
Shai-Hulud
tool
financial
Group
50,000
group
general metric
Minutes
18
minutes
tactic
Cyber Operation Type
Exfiltration
tactic
target region
Target Country
Côte d'Ivoire
country
Click on any entity below to view its context in the main text!
Selective Unpublish
Selecciona las redes de las que quieres eliminar esta publicación. El sistema intentará borrar el post real de la API y limpiará la base de datos para que puedas volver a lanzarlo.
By navigating this website, you accept the use of strictly necessary technical cookies for session security and basic platform functionality. We do not use tracking or advertising cookies.
Read our Privacy Policy.