マイナビニュース

VSCodeの個人情報盗む不正な拡張機能が配布、4.5万超ダウンロード

Check Point Software Technologiesは5月16日(米国時間)、「Malicious VSCode extensions with more than 45K downloads steal PII and enable backdoors - Check Point ...
GIGAZINE

It has been revealed that some VSCode extensions have a malicious function that encrypts ...

Visual Studio Code (VSCode) allows you to use extensions to make development more convenient. It has been reported that an extension that distributes ransomware has been published on the Visual Studio ...
GIGAZINE

VSCodeの一部拡張機能にファイルを暗号化して身代金を要求する悪意 ...

コードエディターのVisual Studio Code(VSCode)には、拡張機能を利用して開発をより便利にすることが可能です。そんなVSCode向け拡張機能のウェブストア「Visual Studio Code Marketplace」において、ランサムウェアを配布する拡張機能が公開されていたことが報告され ...
CSOonline

Warning to developers: Stay away from these 10 VSCode extensions

Developers using Microsoft’s Visual Studio Code (VSCode) editor are being warned to delete, or at least stay away from, 10 newly published extensions which will trigger the installation of a ...
CSOonline

TigerJack’s malicious VSCode extensions mine, steal, and stay hidden

The coordinated campaign abuses Visual Studio Code and OpenVSX extensions to steal code, mine cryptocurrency, and maintain remote control, all while posing as legitimate developer tools. In a new ...
Visual Studio Magazine

Threat Actors Keep Weaponizing VS Code Extensions

Threat actors continue to probe Visual Studio Code's extension ecosystem, and a late November incident shows how quickly a trusted developer tool can be turned into a supply chain beachhead. In a ...