InfoWorld

Threat actors are spreading malicious extensions via VS marketplaces

There isn’t a consistent threat model for extension marketplaces yet, McCarthy said, making it difficult for any platform to anticipate these risks. However, he added, Microsoft’s marketplace has seen ...
GIGAZINE

It has been revealed that some VSCode extensions have a malicious function that encrypts files and demands ransom

Visual Studio Code (VSCode) allows you to use extensions to make development more convenient. It has been reported that an extension that distributes ransomware has been published on the Visual Studio ...
Óstáilte ar MSN

7 little-known VS Code extensions that prove it's more than just an IDE

Like many developers, I used to think of VS Code primarily as a slick code editor – great for writing, debugging, and managing projects. It’s a fantastic tool, no doubt, but my perspective shifted ...
XDA Developers on MSN

I’m moving on from VS Code — and this is the open-source editor I'm switching to

When it comes to customization, Zed is right up there with VS Code. You can head into Settings > Appearance and tweak every ...
Infosecurity-magazine.com

Malicious VS Code Extensions Exploit Name Reuse Loophole

A new campaign involving malicious Visual Studio Code (VS Code) extensions has exposed a loophole in the VS Code Marketplace that allows threat actors to reuse names of previously removed packages.
GIGAZINE

VSCan can detect malicious VSCode extensions

A free diagnostic tool called ' VSCan ' has been released that checks the code of extensions released for Visual Studio Code (VScode) and checks for security issues. Enter the extension's name or ID ...
Bleeping Computer

VSCode extensions found downloading early-stage ransomware

Two malicious VSCode Marketplace extensions were found deploying in-development ransomware, exposing critical gaps in Microsoft's review process. The extensions, named "ahban.shiba" and ...