窓の杜

そこまでやる? 170万DLの人気「Visual Studio Code」拡張機能に巧緻な ...

「やじうまの杜」では、ニュース・レビューにこだわらない幅広い話題をお伝えします。 このマルウェアを報告したLorenz Lehmann氏(@LehmannLorenz)によると、マルウェアの概要は以下の通り。 「Solidity」プログラミングを容易にすると謳って拡張機能をストア ...
Bleeping Computer

'WhiteCobra' floods VSCode market with crypto-stealing extensions

A threat actor named WhiteCobra has been targeting VSCode, Cursor, and Windsurf users by planting 24 malicious extensions in the Visual Studio marketplace and the Open VSX registry. The campaign is ...
Bleeping Computer

Fake Solidity VSCode extension on Open VSX backdoors developers

A remote access trojan dubbed SleepyDuck, and disguised as the well-known Solidity extension in the Open VSX open-source registry, uses an Ethereum smart contract to establish a communication channel ...