Topic: dependency auditing

Sort by: Relevance | Date
  • 19 Malicious Visual Studio Code Extensions Uncovered
    December 12, 2025
    77%

    19 Malicious Visual Studio Code Extensions Uncovered

    A malicious campaign used 19 Visual Studio Code extensions to hide malware, often by embedding a tampered npm package or disguising a binary archive as a PNG image to evade detection. The attacks targeted developers by mimicking trusted tools, with some extensions executing a Trojan upon launch a...

    Read More »

Related Topics

supply chain attack (1) cybersecurity research (1) risk mitigation (1) developer targeting (1) threat evolution (1) malicious extensions (1) security detection (1) vs code marketplace (1)