all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Malicious helpers: VS Code Extensions observed stealing sensitive information

Add to bookmarks
April 3, 2024, noon | Lucija Valentić

Security Boulevard securityboulevard.com




In the last few years, there has been a dramatic rise (1300%) in supply chain attacks across multiple public repositories. ReversingLabs’ researchers have been monitoring them daily to detect malicious packages. After packages are detected, the team notifies administrators for these public repositories, and encourages them to take the offending packages down if they are still up. With these threat hunting efforts, the RL research team is trying to raise awareness of the threat posed to software producers and …

administrators attacks code daily detect extensions information malicious malicious packages monitoring packages public repositories researchers reversinglabs sensitive sensitive information stealing supply supply chain supply chain attacks team threat research vs code

Visit resource

More from securityboulevard.com / Security Boulevard

Venafi Launches 90-Day TLS Certificate Renewal Initiative an hour ago | securityboulevard.com
application security appsec certificate certificate management +26
Data Breaches in April 2024 – Infographic 5 hours ago | securityboulevard.com
april big breaches cyber attacks +10
Intel 471 Acquires Cyborg Security to Expand Its Cyber Threat Intelligence Portfolio with Innovative Threat … 6 hours ago | securityboulevard.com
actor advanced april blog +26
RSAC 2024 Innovation Sandbox | VulnCheck: A Solution to the Challenge of Vulnerability Prioritization 14 hours ago | securityboulevard.com
benchmark blog challenge conference +22
Navigating the Future: Insights From the M&A Symposium at Kaseya Connect Global 15 hours ago | securityboulevard.com
amp connect connect global future +15
Introducing ISO 42001 and NIST RMF Frameworks 16 hours ago | securityboulevard.com
build business can companies +17
PIPEDA Compliance with Accutive Data Discovery and Masking: Understanding and protecting your Canadian sensitive data 19 hours ago | securityboulevard.com
act adm platform articles canada +34
TrustCloud Product Updates: April 2024 19 hours ago | securityboulevard.com
ai capabilities april capabilities generative +8
News alert: Cybersixgill unveils ‘Third-Party Intelligence’ to deliver vendor-specific threat intel 20 hours ago | securityboulevard.com
alert april cyber cybersecurity +24

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Information Security Cyber Risk Analyst

@ Intel | USA - AZ - Chandler
View on infosec-jobs.com

Senior Cloud Security Engineer (Fullstack)

@ Grab | Petaling Jaya, Malaysia
View on infosec-jobs.com

Principal Product Security Engineer

@ Oracle | United States
View on infosec-jobs.com

Cybersecurity Strategy Director

@ Proofpoint | Sunnyvale, CA
View on infosec-jobs.com

Information Security Consultant/Auditor

@ Devoteam | Lisboa, Portugal
View on infosec-jobs.com

IT Security Engineer til Netcompany IT Services

@ Netcompany | Copenhagen, Denmark
View on infosec-jobs.com
View more jobs