Back

Bharath Varma

 • 

Google • 1y

Malicious VSCode Extensions with Millions of Installs Discovered A group of Israeli researchers uncovered security vulnerabilities in the Visual Studio Code (VSCode) Marketplace by creating a fake extension called "Darcula," which mimicked the popular "Dracula Official" theme. The malicious extension, designed to collect system information, was installed by over 100 organizations, including major companies and a national court network. This experiment highlights the significant security risks within the VSCode Marketplace, where thousands of extensions with millions of installs have been found to contain risky or malicious code. The researchers call for more stringent controls and code reviews by Microsoft to mitigate these threats. Source ( bleepingcomputer ) found it interesting Follow for more !!

4 Replies
3
11
Replies (4)

More like this

Recommendations from Medial

Saswata Kumar Dash

Buidling AlLiN|AI Re... • 7d

Forget Cursor — here’s your new Google Code Editor! Thanks, here you go! 👇 You can install Google Gemini Code Assist by following this simple guide: 🔗 https://codeassist.google/ ⸻ 🧩 How to Install: 1. Open your code editor (VS Code or Cursor).

See More
Reply
2
Image Description
Image Description

Prathamesh Prabhu

Developer • 10m

Must-Have VS Code Extensions! ✨ The right extensions of vs code can supercharge your coding experience! 🚀 Here are some must-have extensions: 🌟Prettier: Keep your code neat and tidy with automatic formatting. ✨ 🌟Live Server: Instantly see your

See More
5 Replies
3

Hayan N

Nothing much • 11m

Ten website that are useful (Part 2) CODIUM AI 1. VS Code Extensions: Develop and sell extensions. 2. Coding Assistance Services: Provide coding suggestions 3. Coding Tool Platform: Create a tool-sharing platform. MONSTER API; 1. Job Search Tools:

See More
Reply
3
3
Image Description
Image Description

Kavin AI Explorer

 • 

Earney • 15d

VIBE CODERS ALERT!!!! Cursor IDE Extension Used in $500K Crypto Hack!!! Just wanted to share a important news, especially for those of us deep into ai based development. This hack is on Solidity and crypto development! There's been a wild $500,0

See More
2 Replies
1
10
Image Description

Archisman Midya

CS Undergrad at Scal... • 1y

Google’s Project IDX Could Be a Game Changer for Developers Today, I explored Google’s Project IDX and why it might be better than Visual Studio Code (VSCode). Project IDX is a cloud-based coding tool, meaning you can use it from any device, anywhere

See More
1 Reply
2
10
Image Description
Image Description

Nikhil Rathour

solopenur • 16d

Hey guys, was reading this crazy story about a blockchain developer yaar, and it got me thinking aloud like the introverted nerd I am. Imagine this: bhai sets up a fresh computer, starts coding in Cursor (that AI editor forked from VS Code), and down

See More
3 Replies
11
Image Description
Image Description

Nawal

Entrepreneur | Build... • 3m

The Most Expensive “Thank You” in Tech History 🔥 Turns out, saying “thank you” to ChatGPT costs millions. Literally. Sam Altman just revealed that OpenAI spends tens of millions of dollars processing tiny, polite phrases like “thank you” and “pl

See More
2 Replies
2
15

Download the medial app to read full posts, comements and news.