An Interest In:
Web News this Week
- February 21, 2025
- February 20, 2025
- February 19, 2025
- February 18, 2025
- February 17, 2025
- February 16, 2025
- February 15, 2025
Some of Our Sources
- Mashable
- Techcrunch
- Simplebits
- Team Treehouse
- Inspiredology
- Noupe
- CSS Globe
- Web Resource Source
- Dev To
- The Verge
Help Webnuz
Referal links:
June 10, 2024 05:23 pm
Original Link: https://it.slashdot.org/story/24/06/10/1723209/malicious-vscode-extensions-with-millions-of-installs-discovered?utm_source=rss1.0mainlinkanon&utm_medi
Malicious VSCode Extensions With Millions of Installs Discovered
A group of Israeli researchers explored the security of the Visual Studio Code marketplace and managed to "infect" over 100 organizations by trojanizing a copy of the popular 'Dracula Official theme to include risky code. Further research into the VSCode Marketplace found thousands of extensions with millions of installs. From a report: Visual Studio Code (VSCode) is a source code editor published by Microsoft and used by many professional software developers worldwide. Microsoft also operates an extensions market for the IDE, called the Visual Studio Code Marketplace, which offers add-ons that extend the application's functionality and provide more customization options. Previous reports have highlighted gaps in VSCode's security, allowing extension and publisher impersonation and extensions that steal developer authentication tokens. There have also been in-the-wild findings that were confirmed to be malicious.Read more of this story at Slashdot.
Original Link: https://it.slashdot.org/story/24/06/10/1723209/malicious-vscode-extensions-with-millions-of-installs-discovered?utm_source=rss1.0mainlinkanon&utm_medi
Share this article:
Tweet
View Full Article
Slashdot
Slashdot was originally created in September of 1997 by Rob "CmdrTaco" Malda. Today it is owned by Geeknet, Inc..More About this Source Visit Slashdot