Pay with

USD

Supports Visa, Mastercard, SEPA & more

Flexible trading, zero fees

Use your crypto for payments worldwide

Basic

Trade crypto freely

Magnify your profit with leverage

Convert & Auto-Invest

Trade any size with no fees and no slippage

Get exposure to leveraged positions simply

Pre-Market Trading

Trade new tokens before listing

Advanced

Trade on-chain with Gate Wallet

Smart access to new on-chain tokens

Smart strategies with automated trading

Follow expert trading strategies

CrossEx Trading

One margin balance, shared across platforms

Access hundreds of perpetual contracts

One platform for global traditional assets

Trade European-style vanilla options

Unified Account

Maximize your capital efficiency

Introduction to Futures Trading

Learn the basics of futures trading

Join events to earn rewards

Use virtual funds to practice risk-free trading

U.S. stock CFD derivatives

Access real US stocks and ETFs

Trade quality Hong Kong-listed stocks

Real Korean stocks and top assets

High leverage, 24/7 trading

Tokenized Stocks

Backed by real stock assets

Unlock full access to global stock IPOs

Mint GUSD for Treasury RWA yields

Stocks Activities

Trade Popular Stocks and Unlock Generous Airdrops

Launch

Collect candies to earn airdrops

Quick staking, earn potential new tokens

Hold GT and get massive airdrops for free

Unlock full access to global stock IPOs

Trade on-chain assets and earn airdrops

Earn futures points and claim airdrop rewards

Investment

Earn interest with idle tokens

Auto-invest on a regular basis

Dual Investment

Profit from market volatility

Earn rewards with flexible staking

Pledge one crypto to borrow another

One-stop lending hub

Premium wealth growth plans

Private Wealth Management

Premium asset allocation

Top-tier quant strategies

Stake cryptos to earn in PoS products

No-liquidation leverage

One-click stake, daily earnings

Post, share, and explore crypto trends

Live crypto market analysis

Chat with crypto traders

What is happening in crypto

More

Promotions

Activity Center

Participate in activities to earn rewards

Invite friends to earn referral rewards

Affiliate Program

Earn exclusive commission rewards

Grow influence and earn airdrops

Real-time platform updates

Crypto industry articles

Huge fee discounts

Asset Management

One‑stop asset management solution

Enterprise digital asset solutions

Developers (API)

Connects to the Gate application ecosystem

OTC Bank Transfer

Deposit and withdraw fiat

Generous API rebate mechanisms

AI

Your all-in-one conversational AI partner

Use Gate AI directly in your social App

Gate Blue Lobster, ready to go

Gate for AI Agent

AI infrastructure, Gate MCP, Skills, and CLI

Gate Skills Hub

From office tasks to trading, the all-in-one skill hub makes AI even more useful.

Others

Find FAQs and help guides

Learn about crypto investing

Grow with the champions

Proof of Reserves

Gate promises 100% proof of reserves

Keep your assets secure

11-minute VS Code malicious plugin takes down employee computers, GitHub admits 3,800 internal repositories stolen

2026-06-25 13:08:37

Abstract generation in progress

ME News report, May 20 (UTC+8), according to Beating monitoring, GitHub officially released a security investigation notice, confirming that an employee's device was infected with a poisoned VS Code extension, leading to unauthorized access to its internal code repositories. The attacker claims to have packaged and stolen approximately 3,800 internal GitHub repositories, and the official acknowledges that this statement is consistent with the current investigation results in direction. The malicious extension in question is the well-known Nx Console (v18.95.0), which was briefly listed on the Microsoft Visual Studio Code marketplace on May 18. The attacker obtained publishing permissions by stealing a contributor's token and pushed a malicious version containing a credential stealer to the marketplace. Although the Nx team detected the anomaly and removed this version within 11 minutes, a GitHub employee still downloaded and fell victim during this period. This malicious payload would automatically read the host's Git credentials, VS Code extension storage, AWS keys, and sensitive data from 1Password in the background. This set of credentials allowed the external attacker to bypass perimeter security barriers and directly package and steal GitHub's internal code repositories. GitHub stated that it detected and contained this device intrusion on May 19. To mitigate risks, the security team expedited the rotation of all critical keys yesterday and overnight, prioritizing high-value credentials. The team is currently continuously analyzing logs and monitoring subsequent activities, and a full report will be published after the investigation concludes. (Source: BlockBeats)

View Original

This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.

Reward
like
Comment
Repost
Share

Comment

Add a comment

Add a comment

No comments

Trending Topics
View More
#
Get2SharesOfSKHynixAtZeroCost
1.49M Popularity
#
BTCProbes60KKeySupportLevel
378.81M Popularity
#
WorldCup🇺🇸vs🇹🇷
301.86K Popularity
#
TradFiCFDGoldMasters
2.19M Popularity
#
StakeUSD1Earn9.48%APR
971.2K Popularity

Pinned