Visual Studio Magazine

Threat Actors Keep Weaponizing VS Code Extensions

Threat actors continue to probe Visual Studio Code's extension ecosystem, and a late November incident shows how quickly a trusted developer tool can be turned into a supply chain beachhead. In a ...
Fox News

Malicious Mac extensions steal crypto wallets and passwords

Mac users often assume they're safer than everyone else, especially when they stick to official app stores and trusted tools. That sense of security is exactly what attackers like to exploit. Security ...
TechRadar

Dangerous new malware targets macOS devices via OpenVSX extensions - here's how to stay safe

GlassWorm malware campaign expanded from VS Code Marketplace to Open VSX Four compromised extensions delivered macOS infostealer stealing browser data, wallets, and keychain info Extensions downloaded ...
Hosted on MSN

Dangerous new malware targets macOS devices via OpenVSX extensions

GlassWorm malware campaign expanded from VS Code Marketplace to Open VSX Four compromised extensions delivered macOS infostealer stealing browser data, wallets, and keychain info Extensions downloaded ...
Bleeping Computer

Hackers use macOS extended file attributes to hide malicious code

Hackers are using a novel technique that abuses extended attributes for macOS files to deliver a new trojan that researchers call RustyAttr. The threat actor is hiding malicious code in custom file ...
heise online

Dangerous and invisible worm found in Visual Studio Code extensions

For a few days now, a supply chain attack has been running through the Visual Studio Code marketplaces. Both Microsoft's Marketplace and the alternative Open-VSX marketplace of the Eclipse Foundation ...