GitHub Breach via VSCode Extension, ZTE Router CVE-2026-34472, & Public Repo Secrets Leaks
Today's Highlights
Today's security news highlights a significant GitHub internal breach traced to a compromised VSCode extension, underscoring supply chain risks. Additionally, a new CVE affects ZTE routers with pre-auth credential exposure, alongside a prominent example of critical secrets exposed in public GitHub repositories.
GitHub hit by a compromised VSCode extension (r/netsec)
Source: https://reddit.com/r/netsec/comments/1tiiyxq/github_hit_by_a_compromised_vscode_extension/
