TI Mindmap HUB
Threat Intelligence Report

GitHub confirms compromised Nx Console extension was initial access vector

πŸ“… May 24, 2026 πŸ“° www.threatlocker.com πŸ” 0 CVE(s) referenced

A stolen developer credential enabled attackers to publish a malicious Nx Console VS Code extension, which served as the initial access vector for a sophisticated supply chain attack that breached GitHub’s internal repositories, exfiltrated sensitive credentials, and facilitated a public auction of stolen source code.

vendor

Sign in to access the full report including:
detailed analysis, IOCs, MITRE ATT&CK mapping, and STIX bundle.

πŸ” Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

πŸ“Š Visual Mindmap
🎯 IOC Extraction
βš”οΈ MITRE ATT&CK TTPs
πŸ“¦ STIX 2.1 Bundle