Verified source report
A hacker group is poisoning open source code at an unprecedented scale
GitHub is just the latest victim of TeamPCP, a gang that has carried out a spree of software supply chain attacks.
What happened
According to Ars Technica’s source item, A hacker group is poisoning open source code at an unprecedented scale, GitHub is just the latest victim of TeamPCP, a gang that has carried out a spree of software supply chain attacks.
Context
The development sits in VINI’s Technology file for readers following technology, science, product policy, markets, infrastructure, and the public consequences of innovation. The original report is linked so readers can check the source account, follow later updates, and compare new coverage against the first published record. The source item is dated 2026-05-22T10:30:14+00:00.
What to watch
Open questions include whether primary sources issue follow-up statements, whether local or market impacts become clearer, and whether additional reporting changes the timeline or adds material context.
Source
Primary source: A hacker group is poisoning open source code at an unprecedented scale via Ars Technica. VINI cites and links the source; it does not reproduce the publisher’s full article text without rights clearance.
This source-cited VINI report links to the original publisher record. VINI does not republish third-party article bodies without rights clearance. 1 source listed.
Source links
- A hacker group is poisoning open source code at an unprecedented scaleArs Technica - 2026-05-22T10:30:14+00:00
Reader comments
Moderated discussion
Comments are open to authenticated approved accounts, screened for spam and abuse, and published only after newsroom moderation unless editors change the story control.