Unknown threat actors compromised Toptalβs GitHub account to publish malicious npm packages that exfiltrate credentials and delete files. This incident highlights ongoing supply chain attacks leveraging open-source ecosystems, with similar threats targeting Python packages and VS Code extensions. #Toptal #npmattack #VSCodeExtension #SupplyChainThreats
Keypoints
- Hackers gained access to Toptalβs GitHub organization and published malicious packages on npm.
- These packages contained code to exfiltrate GitHub tokens and delete files silently on victim systems.
- Approximately 5,000 downloads were recorded before the malicious packages were removed.
- Recent supply chain attacks also targeted Python and Visual Studio Code extensions with malware and destructive commands.
- Organizations are urged to monitor open-source dependencies and enforce security measures against such threats.
Read More: https://thehackernews.com/2025/07/hackers-breach-toptal-github-publish-10.html