all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

VSCode Marketplace can be abused to host malicious extensions

Add to bookmarks
Jan. 6, 2023, 7:11 p.m. | Bill Toulas

BleepingComputer www.bleepingcomputer.com

Threat analysts at AquaSec have experimented with the security of VSCode Marketplace and found that it's surprisingly easy to upload malicious extensions from accounts that appear verified on the platform. [...]

accounts analysts extensions host malicious marketplace microsoft platform security software threat verified vscode

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

Finland warns of Android malware attacks breaching bank accounts 23 hours ago | www.bleepingcomputer.com
accounts agency android android malware +14
Iranian hackers pose as journalists to push backdoor malware 1 day, 23 hours ago | www.bleepingcomputer.com
actor apt42 attacks backdoor +20
Android bug can leak DNS traffic with VPN kill switch enabled 2 days, 17 hours ago | www.bleepingcomputer.com
android android devices block bug +15
Android bug leaks DNS queries even when VPN kill switch is enabled 2 days, 17 hours ago | www.bleepingcomputer.com
android android devices block bug +14
NSA warns of North Korean hackers exploiting weak DMARC email policies 2 days, 18 hours ago | www.bleepingcomputer.com
apt43 attacks authentication dmarc +19
Google rolls back reCaptcha update to fix Firefox issues 2 days, 21 hours ago | www.bleepingcomputer.com
back bug captcha firefox +11
NATO and EU condemn Russia's cyberattacks against Germany, Czechia 2 days, 22 hours ago | www.bleepingcomputer.com
apt28 campaign countries cyber +14
Microsoft rolls out passkey auth for personal Microsoft accounts 2 days, 22 hours ago | www.bleepingcomputer.com
accounts auth authenticate biometric +20
CEO who sold fake Cisco devices to US military gets 6 years in prison 3 days, 16 hours ago | www.bleepingcomputer.com
ceo cisco companies counterfeit +14

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Consultant Sécurité SI H/F Gouvernance - Risques - Conformité - Nantes

@ Hifield | Saint-Herblain, France
View on infosec-jobs.com

L2 Security - Senior Security Engineer

@ Paytm | Noida, Uttar Pradesh
View on infosec-jobs.com

GRC Integrity Program Manager

@ Meta | Bellevue, WA | Menlo Park, CA | Washington, DC | New York City
View on infosec-jobs.com

Consultant Active Directory H/F

@ Hifield | Sèvres, France
View on infosec-jobs.com

Consultant PCI-DSS H/F

@ Hifield | Sèvres, France
View on infosec-jobs.com

Head of Security Operations

@ Canonical Ltd. | Home based - Americas, EMEA
View on infosec-jobs.com
View more jobs