There isn’t a consistent threat model for extension marketplaces yet, McCarthy said, making it difficult for any platform to ...

New research has uncovered that publishers of over 100 Visual Studio Code (VS Code) extensions leaked access tokens that ...

A threat actor called TigerJack is constantly targeting developers with malicious extensions published on Microsoft's Visual ...

A malware that steals credentials and cryptocurrencies uses Unicode for invisible code and installs a remote access trojan.

Visual Studio Code (VSCode) allows you to use extensions to make development more convenient. It has been reported that an extension that distributes ransomware has been published on the Visual Studio ...

Security researchers found malicious code hiding in two VSCode extensions Microsoft quickly pulled them and notifies users ...

The coordinated campaign abuses Visual Studio Code and OpenVSX extensions to steal code, mine cryptocurrency, and maintain ...

Developers using Microsoft’s Visual Studio Code (VSCode) editor are being warned to delete, or at least stay away from, 10 newly published extensions which will trigger the installation of a ...

Cybersecurity researchers from Check Point have discovered multiple malicious Visual Studio extensions sitting in Microsoft’s VSCode Marketplace. Combined, the three malware were downloaded 46,600 ...

Security Millions of users have fallen victim to malicious browser extensions because of a critical flaw, but things are changing — here's what you need to know Security Nearly a million browsers ...