Topic: vs code marketplace

Sort by: Relevance | Date
  • 19 Malicious Visual Studio Code Extensions Uncovered
    December 12, 2025

    19 Malicious Visual Studio Code Extensions Uncovered

    A malicious campaign used 19 Visual Studio Code extensions to hide malware, often by embedding a tampered npm package or disguising a binary archive as a PNG image to evade detection. The attacks targeted developers by mimicking trusted tools, with some extensions executing a Trojan upon launch a...

    Read More »
  • Beware Malicious VS Code Extensions Stealing Data
    December 10, 2025

    Beware Malicious VS Code Extensions Stealing Data

    Malicious extensions named Bitcoin Black and Codo AI were discovered on the VS Code marketplace, using social engineering and functional facades to steal sensitive developer data. The malware employed sophisticated techniques like DLL hijacking to deploy a powerful infostealer that harvested clip...

    Read More »

Related Topics

cybersecurity research (2) malicious extensions (2) risk mitigation (1) developer targeting (1) data exfiltration (1) threat evolution (1) social engineering (1) security detection (1)