GitHub has confirmed a cyberattack after a threat actor claimed to have stolen and listed company data for sale. The breach involved unauthorised access to internal repositories via a "poisoned" VS Code extension, with the attacker's claims of accessing nearly 3,800 repositories aligning with GitHub's investigation.