Malicious Microsoft VSCode extensions steal passwords, open remote shells

May 17, 2023, 4:37 p.m. | Bill Toulas

BleepingComputer www.bleepingcomputer.com

Cybercriminals are starting to target Microsoft's VSCode Marketplace, uploading three malicious Visual Studio extensions that Windows developers downloaded 46,600 times. [...]

cybercriminals developers extensions malicious marketplace microsoft passwords security shells steal studio target visual studio vscode windows

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

Microsoft warns of "Dirty Stream" attack impacting Android apps 48 minutes ago | www.bleepingcomputer.com

android android apps application apps +17

REvil hacker behind Kaseya ransomware attack gets 13 years in prison 2 hours ago | www.bleepingcomputer.com

attack hacker kaseya kaseya ransomware attack +12

Microsoft won't fix Windows 0x80070643 errors, manual fix required 2 hours ago | www.bleepingcomputer.com

automated environment errors fix +5

Cybersecurity consultant arrested after allegedly extorting IT firm 3 hours ago | www.bleepingcomputer.com

arrested confidential consultant cybersecurity +5

HPE Aruba Networking fixes four critical RCE flaws in ArubaOS 18 hours ago | www.bleepingcomputer.com

advisory april aruba arubaos +17

DropBox says hackers stole customer data, auth secrets from eSignature service 18 hours ago | www.bleepingcomputer.com

access auth authentication breached +21

US govt warns of pro-Russian hacktivists targeting water facilities 21 hours ago | www.bleepingcomputer.com

critical critical infrastructure disrupt government +16

Panda Restaurants discloses data breach after corporate systems hack 23 hours ago | www.bleepingcomputer.com

attackers breach compromised corporate +14

French hospital CHC-SV refuses to pay LockBit extortion demand 1 day ago | www.bleepingcomputer.com

demand extortion france french +12

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote

View on infosec-jobs.com

Principal Business Value Consultant

@ Palo Alto Networks | Chicago, IL, United States

View on infosec-jobs.com

Cybersecurity Specialist, Sr. (Container Hardening)

@ Rackner | San Antonio, TX

View on infosec-jobs.com

Penetration Testing Engineer- Remote United States

@ Stanley Black & Decker | Towson MD USA - 701 E Joppa Rd Bg 700

View on infosec-jobs.com

Internal Audit- Compliance & Legal Audit-Dallas-Associate

@ Goldman Sachs | Dallas, Texas, United States

View on infosec-jobs.com

Threat Responder

@ Deepwatch | Remote

View on infosec-jobs.com

View more jobs

all InfoSec news

Malicious Microsoft VSCode extensions steal passwords, open remote shells

More from www.bleepingcomputer.com / BleepingComputer

Jobs in InfoSec / Cybersecurity

Social Engineer For Reverse Engineering Exploit Study

Principal Business Value Consultant

Cybersecurity Specialist, Sr. (Container Hardening)

Penetration Testing Engineer- Remote United States

Internal Audit- Compliance & Legal Audit-Dallas-Associate

Threat Responder