GitHub probes alleged breach of 4,000 internal repositories
TeamPCP is previously been known to attack the developer ecosystem, including platforms like PyPI, npm, and Docker
GitHub is investigating a security breach after the cybercrime group TeamPCP claimed to have accessed approximately 4,000 private repositories containing the platform's internal source code.
The group posted the alleged stolen data for sale on the Breached hacking forum Tuesday, demanding a minimum of $50,000 for a single buyer, with a threat to release everything for free if no offer materialises.
GitHub investigates internal repository breach.
In a statement posted on X, GitHub said it is investigating “unauthorised access” to its internal repositories. The company added that it has found no evidence so far that customer data outside those systems has been affected, including enterprise environments and public or private user repositories.
GitHub stated that it is monitoring its infrastructure for any further attacks and will inform any customer if there is any risk involved.
TeamPCP, a hacking group, was identified as being responsible for this attack on a cybercrime forum, where it claims to have gained access to nearly 4,000 private repositories. It says that it requires at least $50,000 from a buyer, as it has source code as well as organisational information.
The hackers offered the data for sale as a one-time transaction, after which they would either destroy the data or publish it publicly if no buyer were found.
TeamPCP has previously been known to attack the developer ecosystem, including platforms like PyPI, npm, and Docker.
In March, TeamPCP was also linked with hacking the Trivy scanner from Aqua Security, and this resulted in hacks that compromised container images and open-source software. This attack is said to have distributed malware among tens of thousands of devices.
Security professionals state that hacks that involve internal repositories may have significant ramifications if source code or credentials are stolen. GitHub, an organisation that is utilised by more than four million organisations, most of which are Fortune 100 firms, is key in software development across the globe.
-
Could AI create $500 trillion global economy? Elon Musk, Jensen Huang think so -
Why Singapore is urging financial firms to scale up AI for better jobs -
Google reinvents search with AI in biggest update in 25 years: Is web traffic apocalypse coming? -
Meta AI rival chatbots gets free WhatsApp access -
Google I/O 2026: Watch Major announcements and updates live -
OpenAI co-founder Andrej Karpathy joins Anthropic as AI race intensifies -
AI still falls short on programming language design, Bjarne Stroustrup says -
Mistral AI acquires Emmi AI startup in industrial push with a major move
