URL has been copied successfully!
Malicious Microsoft VSCode extensions target devs, crypto community
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Malicious Microsoft VSCode extensions target devs, crypto community

by

Andy Stern
in

Tags: , , , , ,

Malicious Visual Studio Code extensions were discovered on the VSCode marketplace that download heavily obfuscated PowerShell payloads to target developers and cryptocurrency projects in supply chain attacks.

First seen on bleepingcomputer.com

Jump to article: www.bleepingcomputer.com/news/security/malicious-microsoft-vscode-extensions-target-devs-crypto-community/

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Cybersecurity Snapshot: Prompt Injection and Data Disclosure Top OWASP’s List of Cyber Risks for GenAI LLM Apps
  2. Rising ClickFix malware distribution trick puts PowerShell IT policies on notice
  3. Supply chain compromise of Ultralytics AI library results in trojanized versions
  4. A new playground: Malicious campaigns proliferate from VSCode to npm