Pricefield | Lemmy
  • Communities
  • Create Post
  • Create Community
  • heart
    Support Lemmy
  • search
    Search
  • Login
  • Sign Up
KidM to [email protected]English • 1 year ago

Malicious VSCode extensions with millions of installs discovered

www.bleepingcomputer.com

external-link
message-square
7
fedilink
  • cross-posted to:
  • [email protected]
  • [email protected]
62
external-link

Malicious VSCode extensions with millions of installs discovered

www.bleepingcomputer.com

KidM to [email protected]English • 1 year ago
message-square
7
fedilink
  • cross-posted to:
  • [email protected]
  • [email protected]
A group of Israeli researchers explored the security of the Visual Studio Code marketplace and managed to "infect" over 100 organizations by trojanizing a copy of the popular 'Dracula Official theme to include risky code. Further research into the VSCode Marketplace found thousands of extensions with millions of installs.
alert-triangle
You must log in or register to comment.
  • @[email protected]
    link
    fedilink
    English
    1•1 year ago

    There was also recently something similar with ComfyUI, where an extensions was embedded with a malware.

  • @[email protected]
    link
    fedilink
    English
    7•1 year ago

    I always found it weird how people are willing to install obscure extensions just like that. For any program that supports them. This doesn’t surprise me at all.

    That being said I’ll go recheck the few I have installed…

    • @[email protected]
      link
      fedilink
      English
      2•1 year ago

      I don’t think I realized that the extensions could contain code since most of them are just doing syntax highlighting.

      • @[email protected]
        link
        fedilink
        English
        1•1 year ago

        You obviously haven’t seen the platformio extension.
        It’s a beast, turns VSCode into an embedded IDE and programmer for loads of different microchips

        • @[email protected]
          link
          fedilink
          English
          2•1 year ago

          Yeah I’m not using anything like that. Bit irresponsible of MS to not audit this stuff, then. Lots of businesses allowing users to install vs code extensions freely even if they’re otherwise restricted for software installs.

  • @[email protected]
    link
    fedilink
    English
    22•1 year ago

    That article is awful…

    The original post it’s hacking is better: https://medium.com/@amitassaraf/2-6-exposing-malicious-extensions-shocking-statistics-from-the-vs-code-marketplace-cf88b7a7f38f

    • Alphane Moon
      link
      fedilink
      English
      9•1 year ago

      Medium’s initial no-account view is awful though:

      Medium

[email protected]

[email protected]
Create a post
You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: [email protected]

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

  • Be respectful. Everyone should feel welcome here.
  • No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
  • No Ads / Spamming.
  • No pornography.

Community Rules

  • Idk, keep it semi-professional?
  • Nothing illegal. We’re all ethical here.
  • Rules will be added/redefined as necessary.

If you ask someone to hack your “friends” socials you’re just going to get banned so don’t do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities [email protected] [email protected] [email protected] [email protected] [email protected]

Notable mention to [email protected]

  • 14 users / day
  • 25 users / week
  • 167 users / month
  • 865 users / 6 months
  • 2 subscribers
  • 3.28K Posts
  • 5.77K Comments
  • Modlog
  • mods:
  • Kid
  • Lanky_Pomegranate530
  • UI: 0.18.4
  • BE: 0.18.2
  • Modlog
  • Instances
  • Docs
  • Code
  • join-lemmy.org