Home/Tag/Vs Code

Vs Code

5 articles tagged with "Vs Code"

Malware4 min read

Nx Console VS Code Extension Hijacked for 11 Minutes

Attackers published malicious Nx Console 18.95.0 to VS Code Marketplace, stealing developer credentials via triple-channel exfiltration and Sigstore-signed npm package poisoning.

James RiveraMay 19, 2026

Vulnerabilities4 min read

Cline AI Agent Flaw Let Any Website Execute Code on Developer Machines

CVE-2026-44211 (CVSS 9.7) allowed malicious websites to hijack Cline's Kanban WebSocket server, exfiltrate workspace data, and execute arbitrary commands through the AI agent. Patched in v0.1.66.

Marcus ChenMay 12, 2026

Malware5 min read

73 GlassWorm Sleeper Extensions Found in Open VSX Marketplace

Socket researchers identify 73 malicious VS Code extensions on Open VSX tied to GlassWorm campaign. Six already activated to deliver malware through native binaries and obfuscated JavaScript.

James RiveraApr 27, 2026

Malware5 min read

Fake Next.js Job Tests Deploy In-Memory Malware via VS Code

Microsoft uncovers developer-targeting campaign using fake coding assessments to deliver JavaScript backdoors through VS Code automation triggers and Vercel-hosted payloads.

James RiveraFeb 26, 2026

Security Guides5 min read

Supply Chain Attacks on Developer Tools: A Growing Threat

From VS Code extensions to automation platforms, attackers are targeting the tools developers trust. Here's what security teams need to know.

Emily ParkJan 10, 2026