GlassWorm spread via 14 VS Code extensions; Solana + Google Calendar C2; stole credentials, drained 49 wallets.

A threat actor called TigerJack is constantly targeting developers with malicious extensions published on Microsoft's Visual ...

The coordinated campaign abuses Visual Studio Code and OpenVSX extensions to steal code, mine cryptocurrency, and maintain ...

A new and ongoing supply-chain attack is targeting developers on the OpenVSX and Microsoft Visual Studio marketplaces with ...

Visual Studio developers are targeted with a self-propagating worm in a sophisticated supply chain attack through the OpenVSX ...

New research has uncovered that publishers of over 100 Visual Studio Code (VS Code) extensions leaked access tokens that ...

Security researchers found malicious code hiding in two VSCode extensions Microsoft quickly pulled them and notifies users ...

A malware that steals credentials and cryptocurrencies uses Unicode for invisible code and installs a remote access trojan.

Visual Studio Code (VSCode) allows you to use extensions to make development more convenient. It has been reported that an extension that distributes ransomware has been published on the Visual Studio ...

Developers using Microsoft’s Visual Studio Code (VSCode) editor are being warned to delete, or at least stay away from, 10 newly published extensions which will trigger the installation of a ...