{"id":1584863,"date":"2026-05-20T16:38:40","date_gmt":"2026-05-20T16:38:40","guid":{"rendered":"http:\/\/jbfK78P7w2rjoEAULmQzfX"},"modified":"2026-05-20T16:38:40","modified_gmt":"2026-05-20T16:38:40","slug":"devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension","status":"publish","type":"post","link":"https:\/\/arcader.org\/news\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\/","title":{"rendered":"Devs, be careful what you plug in: GitHub security breach was apparently facilitated by a &#8216;poisoned Visual Studio Code extension&#8217;"},"content":{"rendered":"<article>\n<p>GitHub, arguably <em>the <\/em>place for developers to store and share code, has been the target of a cyberattack. The Microsoft-owned platform reported on Tuesday that its internal repositories experienced unauthorised access, although it does not appear to have exposed customer information outside of that.<\/p>\n<p>&#8220;Our current assessment is that the activity involved exfiltration of GitHub-internal repositories only,&#8221; <a href=\"https:\/\/x.com\/github\/status\/2056949168208552080\" target=\"_blank\">GitHub shared most recently on X<\/a>, &#8220;The attacker\u2019s current claims of ~3,800 repositories are directionally consistent with our investigation so far.&#8221;<\/p>\n<p>The attack reportedly took place via a compromised employee device &#8220;involving a poisoned [Visual Studio] Code extension.&#8221; GitHub did not name the specific developer extension that was leveraged in the breach, nor the attacker. GitHub continues, &#8220;We removed the malicious extension version, isolated the endpoint, and began incident response immediately.&#8221;<\/p>\n<div style=\"min-height: 250px;\">\n<div class=\"kwizly-quiz kwizly-eM7mDO\"><\/div>\n<\/p><\/div>\n<p> <script src=\"https:\/\/kwizly.com\/embed\/eM7mDO.js\" async><\/script><\/p>\n<p>Backdoors placed in useful extensions is not a novel route of attack. For example, one bad actor snaffling up <a href=\"https:\/\/www.pcgamer.com\/hardware\/someone-has-apparently-snaffled-up-31-wordpress-plugins-and-wedged-a-backdoor-in-each-one\/\" target=\"_blank\">31 WordPress plugins and placing a backdoor in all of them<\/a>. For another, security researchers claimed last year that <a href=\"https:\/\/www.pcgamer.com\/software\/browsers\/security-researcher-claims-35-chrome-extensions-with-4-000-000-installs-include-some-kind-of-spyware-or-infostealer\/\" target=\"_blank\">35 Chrome extensions with over 4,000,000 installs &#8216;include some kind of spyware or infostealer&#8217;<\/a><\/p>\n<p>GitHub&#8217;s highest-impact credentials have now been rotated, and the platform says it is continuing to keep an eye out for any further unauthorised access. The platform will share a full report on the security incident in the near future.<\/p>\n<figure class=\"van-image-figure inline-layout\" data-bordeaux-image-check >\n<div class='image-full-width-wrapper'>\n<div class='image-widthsetter' style=\"max-width:2240px;\">\n<p class=\"vanilla-image-block\" style=\"padding-top:56.25%;\"><img loading=\"lazy\" decoding=\"async\" id=\"wbsryXKDFeuXYYZGsVt3yL\" name=\"github crash.jpg\" alt=\"GitHub logo over red code\" src=\"https:\/\/arcader.org\/wp-content\/uploads\/2026\/05\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension.jpg\" mos=\"\" align=\"middle\" fullscreen=\"\" width=\"2240\" height=\"1260\" attribution=\"\" endorsement=\"\" class=\"inline\"><\/p>\n<\/div>\n<\/div><figcaption itemprop=\"caption description\" class=\" inline-layout\"><span class=\"credit\" itemprop=\"copyrightHolder\">(Image credit: EDUARD MUZHEVSKYI \/ SCIENCE PHOTO LIBRARY, Github)<\/span><\/figcaption><\/figure>\n<p><a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/github-confirms-breach-of-3-800-repos-via-malicious-vscode-extension\/\" target=\"_blank\">According to Bleeping Computer<\/a>, hacker group TeamPCP have since claimed responsibility for the GitHub attack via the Breached cybercrime forum. The group says it&#8217;s gained access to both GitHub source code, plus over &#8220;4,000 repos of private code.&#8221; However, the cybercriminals&#8217; motivations are not so clear cut; the alleged attackers write, &#8220;As always this is not a ransom; we do not care about extorting Github.&#8221;<\/p>\n<p>&#8220;One buyer and we shred the data on our end,&#8221; the group continues, &#8220;It looks like our retirement is soon, so if no buyer is found we will leak it [for] free. If you are interested, send your offers to the communications below. We are not interested in under 50k\u2014the best offer will get it.&#8221;<\/p>\n<\/article>\n<p><a href=\"https:\/\/www.pcgamer.com\/hardware\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>GitHub, arguably the place for developers to store and share code, has been the target of a cyberattack. The Microsoft-owned platform reported on Tuesday that its internal repositories experienced unauthorised access, although it does not appear to have exposed customer information outside of that. &#8220;Our current assessment is that the activity involved exfiltration of GitHub-internal repositories only,&#8221; GitHub shared most recently on X, &#8220;The attacker\u2019s current claims of ~3,800 repositories are directionally consistent with our investigation so far.&#8221; The attack reportedly took place via a compromised employee device &#8220;involving a poisoned [Visual Studio] Code extension.&#8221; GitHub did not name the specific developer extension that was leveraged in the breach, nor the attacker. GitHub continues, &#8220;We removed the malicious extension version, isolated the endpoint, and began&hellip;<\/p>\n<p class=\"excerpt-more\"><a class=\"blog-excerpt button\" href=\"https:\/\/arcader.org\/news\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\/\">Read More&#8230;<\/a><\/p>\n","protected":false},"author":1,"featured_media":1584864,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[336],"tags":[66],"class_list":["post-1584863","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-pc-gamer","tag-hardware"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.6 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Devs, be careful what you plug in: GitHub security breach was apparently facilitated by a &#039;poisoned Visual Studio Code extension&#039; | Arcader News<\/title>\n<meta name=\"description\" content=\"GitHub, arguably the place for developers to store and share code, has been the target of a cyberattack. The Microsoft-owned platform reported on Tuesday\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/arcader.org\/news\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Devs, be careful what you plug in: GitHub security breach was apparently facilitated by a &#039;poisoned Visual Studio Code extension&#039; | Arcader News\" \/>\n<meta property=\"og:description\" content=\"GitHub, arguably the place for developers to store and share code, has been the target of a cyberattack. The Microsoft-owned platform reported on Tuesday\" \/>\n<meta property=\"og:url\" content=\"https:\/\/arcader.org\/news\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\/\" \/>\n<meta property=\"og:site_name\" content=\"Arcade News\" \/>\n<meta property=\"article:published_time\" content=\"2026-05-20T16:38:40+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/arcader.org\/wp-content\/uploads\/2026\/05\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension.jpg\" \/>\n<meta name=\"author\" content=\"Arcade News\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Arcade News\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/arcader.org\\\/news\\\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/arcader.org\\\/news\\\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\\\/\"},\"author\":{\"name\":\"Arcade News\",\"@id\":\"https:\\\/\\\/arcader.org\\\/news\\\/#\\\/schema\\\/person\\\/8460f5e5076b52fb2369f2f7ce6f2839\"},\"headline\":\"Devs, be careful what you plug in: GitHub security breach was apparently facilitated by a &#8216;poisoned Visual Studio Code extension&#8217;\",\"datePublished\":\"2026-05-20T16:38:40+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/arcader.org\\\/news\\\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\\\/\"},\"wordCount\":367,\"commentCount\":0,\"image\":{\"@id\":\"https:\\\/\\\/arcader.org\\\/news\\\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/arcader.org\\\/wp-content\\\/uploads\\\/2026\\\/05\\\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension.jpg\",\"keywords\":[\"hardware\"],\"articleSection\":[\"PC Gamer\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/arcader.org\\\/news\\\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/arcader.org\\\/news\\\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\\\/\",\"url\":\"https:\\\/\\\/arcader.org\\\/news\\\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\\\/\",\"name\":\"Devs, be careful what you plug in: GitHub security breach was apparently facilitated by a 'poisoned Visual Studio Code extension' | Arcader News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/arcader.org\\\/news\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/arcader.org\\\/news\\\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/arcader.org\\\/news\\\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/arcader.org\\\/wp-content\\\/uploads\\\/2026\\\/05\\\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension.jpg\",\"datePublished\":\"2026-05-20T16:38:40+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/arcader.org\\\/news\\\/#\\\/schema\\\/person\\\/8460f5e5076b52fb2369f2f7ce6f2839\"},\"description\":\"GitHub, arguably the place for developers to store and share code, has been the target of a cyberattack. The Microsoft-owned platform reported on Tuesday\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/arcader.org\\\/news\\\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/arcader.org\\\/news\\\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/arcader.org\\\/news\\\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\\\/#primaryimage\",\"url\":\"https:\\\/\\\/arcader.org\\\/wp-content\\\/uploads\\\/2026\\\/05\\\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension.jpg\",\"contentUrl\":\"https:\\\/\\\/arcader.org\\\/wp-content\\\/uploads\\\/2026\\\/05\\\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension.jpg\",\"width\":480,\"height\":270,\"caption\":\"Devs, be careful what you plug in: GitHub security breach was apparently facilitated by a \u2018poisoned Visual Studio Code extension\u2019\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/arcader.org\\\/news\\\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/arcader.org\\\/news\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Devs, be careful what you plug in: GitHub security breach was apparently facilitated by a &#8216;poisoned Visual Studio Code extension&#8217;\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/arcader.org\\\/news\\\/#website\",\"url\":\"https:\\\/\\\/arcader.org\\\/news\\\/\",\"name\":\"Arcade News\",\"description\":\"Free Arcade News from the Best Online Sources\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/arcader.org\\\/news\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/arcader.org\\\/news\\\/#\\\/schema\\\/person\\\/8460f5e5076b52fb2369f2f7ce6f2839\",\"name\":\"Arcade News\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/3fea48a614d86edd987bc7bb25f4707c69546d4b1f78ad4aa20b26316bad1f9d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/3fea48a614d86edd987bc7bb25f4707c69546d4b1f78ad4aa20b26316bad1f9d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/3fea48a614d86edd987bc7bb25f4707c69546d4b1f78ad4aa20b26316bad1f9d?s=96&d=mm&r=g\",\"caption\":\"Arcade News\"},\"sameAs\":[\"https:\\\/\\\/cricketgames.tv\"],\"url\":\"https:\\\/\\\/arcader.org\\\/news\\\/author\\\/arcade-news\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Devs, be careful what you plug in: GitHub security breach was apparently facilitated by a 'poisoned Visual Studio Code extension' | Arcader News","description":"GitHub, arguably the place for developers to store and share code, has been the target of a cyberattack. The Microsoft-owned platform reported on Tuesday","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/arcader.org\/news\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\/","og_locale":"en_US","og_type":"article","og_title":"Devs, be careful what you plug in: GitHub security breach was apparently facilitated by a 'poisoned Visual Studio Code extension' | Arcader News","og_description":"GitHub, arguably the place for developers to store and share code, has been the target of a cyberattack. The Microsoft-owned platform reported on Tuesday","og_url":"https:\/\/arcader.org\/news\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\/","og_site_name":"Arcade News","article_published_time":"2026-05-20T16:38:40+00:00","og_image":[{"url":"https:\/\/arcader.org\/wp-content\/uploads\/2026\/05\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension.jpg","type":"","width":"","height":""}],"author":"Arcade News","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Arcade News","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/arcader.org\/news\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\/#article","isPartOf":{"@id":"https:\/\/arcader.org\/news\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\/"},"author":{"name":"Arcade News","@id":"https:\/\/arcader.org\/news\/#\/schema\/person\/8460f5e5076b52fb2369f2f7ce6f2839"},"headline":"Devs, be careful what you plug in: GitHub security breach was apparently facilitated by a &#8216;poisoned Visual Studio Code extension&#8217;","datePublished":"2026-05-20T16:38:40+00:00","mainEntityOfPage":{"@id":"https:\/\/arcader.org\/news\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\/"},"wordCount":367,"commentCount":0,"image":{"@id":"https:\/\/arcader.org\/news\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\/#primaryimage"},"thumbnailUrl":"https:\/\/arcader.org\/wp-content\/uploads\/2026\/05\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension.jpg","keywords":["hardware"],"articleSection":["PC Gamer"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/arcader.org\/news\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/arcader.org\/news\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\/","url":"https:\/\/arcader.org\/news\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\/","name":"Devs, be careful what you plug in: GitHub security breach was apparently facilitated by a 'poisoned Visual Studio Code extension' | Arcader News","isPartOf":{"@id":"https:\/\/arcader.org\/news\/#website"},"primaryImageOfPage":{"@id":"https:\/\/arcader.org\/news\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\/#primaryimage"},"image":{"@id":"https:\/\/arcader.org\/news\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\/#primaryimage"},"thumbnailUrl":"https:\/\/arcader.org\/wp-content\/uploads\/2026\/05\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension.jpg","datePublished":"2026-05-20T16:38:40+00:00","author":{"@id":"https:\/\/arcader.org\/news\/#\/schema\/person\/8460f5e5076b52fb2369f2f7ce6f2839"},"description":"GitHub, arguably the place for developers to store and share code, has been the target of a cyberattack. The Microsoft-owned platform reported on Tuesday","breadcrumb":{"@id":"https:\/\/arcader.org\/news\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/arcader.org\/news\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/arcader.org\/news\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\/#primaryimage","url":"https:\/\/arcader.org\/wp-content\/uploads\/2026\/05\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension.jpg","contentUrl":"https:\/\/arcader.org\/wp-content\/uploads\/2026\/05\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension.jpg","width":480,"height":270,"caption":"Devs, be careful what you plug in: GitHub security breach was apparently facilitated by a \u2018poisoned Visual Studio Code extension\u2019"},{"@type":"BreadcrumbList","@id":"https:\/\/arcader.org\/news\/devs-be-careful-what-you-plug-in-github-security-breach-was-apparently-facilitated-by-a-poisoned-visual-studio-code-extension\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/arcader.org\/news\/"},{"@type":"ListItem","position":2,"name":"Devs, be careful what you plug in: GitHub security breach was apparently facilitated by a &#8216;poisoned Visual Studio Code extension&#8217;"}]},{"@type":"WebSite","@id":"https:\/\/arcader.org\/news\/#website","url":"https:\/\/arcader.org\/news\/","name":"Arcade News","description":"Free Arcade News from the Best Online Sources","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/arcader.org\/news\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/arcader.org\/news\/#\/schema\/person\/8460f5e5076b52fb2369f2f7ce6f2839","name":"Arcade News","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/3fea48a614d86edd987bc7bb25f4707c69546d4b1f78ad4aa20b26316bad1f9d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/3fea48a614d86edd987bc7bb25f4707c69546d4b1f78ad4aa20b26316bad1f9d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/3fea48a614d86edd987bc7bb25f4707c69546d4b1f78ad4aa20b26316bad1f9d?s=96&d=mm&r=g","caption":"Arcade News"},"sameAs":["https:\/\/cricketgames.tv"],"url":"https:\/\/arcader.org\/news\/author\/arcade-news\/"}]}},"_links":{"self":[{"href":"https:\/\/arcader.org\/news\/wp-json\/wp\/v2\/posts\/1584863","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/arcader.org\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/arcader.org\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/arcader.org\/news\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/arcader.org\/news\/wp-json\/wp\/v2\/comments?post=1584863"}],"version-history":[{"count":0,"href":"https:\/\/arcader.org\/news\/wp-json\/wp\/v2\/posts\/1584863\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/arcader.org\/news\/wp-json\/wp\/v2\/media\/1584864"}],"wp:attachment":[{"href":"https:\/\/arcader.org\/news\/wp-json\/wp\/v2\/media?parent=1584863"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/arcader.org\/news\/wp-json\/wp\/v2\/categories?post=1584863"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/arcader.org\/news\/wp-json\/wp\/v2\/tags?post=1584863"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}