Nemeski@lemm.ee to VS Code@programming.devEnglish · edit-23 days agoVSCode extensions with 9 million installs pulled over security riskswww.bleepingcomputer.comexternal-linkmessage-square10fedilinkarrow-up123arrow-down10cross-posted to: cybersecurity@sh.itjust.worksasklemmy@lemmy.mltechnology@lemmit.online
arrow-up123arrow-down1external-linkVSCode extensions with 9 million installs pulled over security riskswww.bleepingcomputer.comNemeski@lemm.ee to VS Code@programming.devEnglish · edit-23 days agomessage-square10fedilinkcross-posted to: cybersecurity@sh.itjust.worksasklemmy@lemmy.mltechnology@lemmit.online
minus-squareFizzyOrange@programming.devlinkfedilinkEnglisharrow-up3·3 days agoThere must be dozens of malicious extensions. I’m honestly surprised we haven’t seen it more. Chrome extensions get sold to shady people all the time; I would have thought VSCode extensions are even higher value targets.
There must be dozens of malicious extensions. I’m honestly surprised we haven’t seen it more. Chrome extensions get sold to shady people all the time; I would have thought VSCode extensions are even higher value targets.