Nemeski@lemm.ee to VS Code@programming.devEnglish · edit-211 hours agoVSCode extensions with 9 million installs pulled over security riskswww.bleepingcomputer.comexternal-linkmessage-square9fedilinkarrow-up121arrow-down10cross-posted to: cybersecurity@sh.itjust.worksasklemmy@lemmy.ml
arrow-up121arrow-down1external-linkVSCode extensions with 9 million installs pulled over security riskswww.bleepingcomputer.comNemeski@lemm.ee to VS Code@programming.devEnglish · edit-211 hours agomessage-square9fedilinkcross-posted to: cybersecurity@sh.itjust.worksasklemmy@lemmy.ml
minus-squareFizzyOrange@programming.devlinkfedilinkEnglisharrow-up2·4 hours agoThere must be dozens of malicious extensions. I’m honestly surprised we haven’t seen it more. Chrome extensions get sold to shady people all the time; I would have thought VSCode extensions are even higher value targets.
There must be dozens of malicious extensions. I’m honestly surprised we haven’t seen it more. Chrome extensions get sold to shady people all the time; I would have thought VSCode extensions are even higher value targets.