Back

Bharath Varma

 • 

Google • 9m

Malicious VSCode Extensions with Millions of Installs Discovered A group of Israeli researchers uncovered security vulnerabilities in the Visual Studio Code (VSCode) Marketplace by creating a fake extension called "Darcula," which mimicked the popular "Dracula Official" theme. The malicious extension, designed to collect system information, was installed by over 100 organizations, including major companies and a national court network. This experiment highlights the significant security risks within the VSCode Marketplace, where thousands of extensions with millions of installs have been found to contain risky or malicious code. The researchers call for more stringent controls and code reviews by Microsoft to mitigate these threats. Source ( bleepingcomputer ) found it interesting Follow for more !!

4 replies11 likes
3
Replies (4)

More like this

Recommendations from Medial

Image Description
Image Description

Prathamesh Prabhu

Developer • 5m

Must-Have VS Code Extensions! ✨ The right extensions of vs code can supercharge your coding experience! 🚀 Here are some must-have extensions: 🌟Prettier: Keep your code neat and tidy with automatic formatting. ✨ 🌟Live Server: Instantly see your

See More
5 replies3 likes

Rakshak Gupta

 • 

Quixy • 8m

Is the any extension that can add as a group of extensions like if we have no of tabs in the chrome we "add tab to new group" if yes name of the extension

0 replies1 like
Image Description

Archisman Midya

CS Undergrad at Scal... • 9m

Google’s Project IDX Could Be a Game Changer for Developers Today, I explored Google’s Project IDX and why it might be better than Visual Studio Code (VSCode). Project IDX is a cloud-based coding tool, meaning you can use it from any device, anywhere

See More
1 replies10 likes
2

Rohit Chandnani

Let's make something... • 5m

Searching for a Co-founder who can code & create a marketplace for the disruption in the market.

0 replies4 likes

Hayan N

Nothing much • 7m

Ten website that are useful (Part 2) CODIUM AI 1. VS Code Extensions: Develop and sell extensions. 2. Coding Assistance Services: Provide coding suggestions 3. Coding Tool Platform: Create a tool-sharing platform. MONSTER API; 1. Job Search Tools:

See More
0 replies3 likes
3

Abdul Alim

Help Students in fin... • 5m

hii! guys most of the people don't know how to write professional prompt in chatgpt and tools like AIPRM is expensive so i make my own extension wich contains professional prompt and it's free because i make this extension just to help please give a

See More
0 replies3 likes
1
Image Description
Image Description

Abdul Alim

Help Students in fin... • 5m

Many people using ChatGPT don’t know how to write the perfect professional prompt, which often leads to bad results from the AI. Tools like AIRPM that help with prompts are too expensive for most users. That’s why I developed my own extension, which

See More
9 replies4 likes
4
Image Description

Akshat Aggarwal

Building Triangles |... • 10m

Calling out all experts ! 🙋 Building a marketplace from scratch is no walk in the park. So, I'm turning to the fellow experts how can one build a killer consumer marketplace from scratch. What features are MUST-HAVES for initial launch? Should

See More
3 replies4 likes
1
Image Description
Image Description

ANKIT KUMAR

Save environment wit... • 1m

Flipzy - The Future of C2C Marketplace Flipzy is a next-generation C2C marketplace designed to make buying and selling used products easier, faster, and more flexible than OLX. Our platform ensures a seamless experience with secure transactions, sma

See More
8 replies15 likes
2

Medial User

Hey I am on Medial • 1m

Tech Help Required! Need to Automate WIX CMS updation from Google sheets. (likely usage of Velo code and app scripts extension in Google sheets, but I am agnostic about the method one uses. just need to get the job done). DM if you can do this.

See More
0 replies4 likes

Download the medial app to read full posts, comements and news.