GitHub links repo breach to TanStack npm supply-chain attack

Published on May 21, 2026

GitHub says the hackers who breached 3,800 internal repositories gained access via a malicious version of the Nx Console VS Code extension, compromised in last week's TanStack npm supply-chain attack. [...]

Continue reading on website
Other news

GitHub Internal Repositories Breached via Malicious Nx Console VS Code Extension

May 21, 2026
GitHub on Wednesday officially confirmed that the breach of its internal repositories was the result of a compromise of an employee device involving a poisoned version of the Nx Console Microsoft Visual Studio Code (VS Code) extension. The development comes as the Nx team revealed that the extension, nrwl.angular-console, was breached after one of its developers' systems was hacked in the

9-Year-Old Linux Kernel Flaw Enables Root Command Execution on Major Distros

May 21, 2026
Cybersecurity researchers have disclosed details of a vulnerability in the Linux kernel that remained undetected for nine years.The vulnerability, tracked as CVE-2026-46333 (CVSS score: 5.5), is a case of improper privilege management that could permit an unprivileged local user to disclose sensitive files and execute arbitrary commands as root on default installations of several major