GitHub confirms breach of 3,800 repos via malicious VSCode extension
… The company has since removed the unnamed trojanized extension from the VS Code marketplace and has secured the compromised device. …
… The company has since removed the unnamed trojanized extension from the VS Code marketplace and has secured the compromised device. …
… In January, two more extensions posing as AI-based coding assistants, with 1.5 million installs, were used to exfiltrate data from compromised developer systems to servers in China. …