all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

VSCode Vulnerabilities - Thomas Chauchefoin, Paul Gerste - PSW #804

Add to bookmarks
Oct. 26, 2023, 1:54 a.m. | Security Weekly

Security Weekly www.youtube.com

Sonar Vulnerability Researchers Thomas Chauchefoin and Paul Gerste conducted research on the security of Visual Studio Code — the most popular code editor out there — which was presented at DEF CON 31 in August. The pair uncovered a few ways for attackers to gain code execution on a victim's computer if they clicked on a specially crafted link or opened a malicious folder in Visual Studio Code, bypassing existing mitigations like Workspace Trust. Developers tend to trust their IDEs …

attackers august code code execution con def def con def con 31 editor paul popular psw research researchers security sonar studio thomas uncovered victim visual studio visual studio code vscode vulnerabilities vulnerability

Visit resource

More from www.youtube.com / Security Weekly

Say Easy, Do Hard - Train How You Fight, Part 2 - BSW #349 an hour ago | www.youtube.com
albuquerque cyber dig discuss +11
Say Easy, Do Hard - Train How You Fight, Part 1 - BSW #349 an hour ago | www.youtube.com
albuquerque cyber cyber incident discuss +10
Dial A CISO Game: 175 Leadership Lessons from CISO STORIES Weekly Podcast! - Todd Fitz... … an hour ago | www.youtube.com
author book ciso cisos +21
The Enterprise Browser: The First Win-Win-Win For CISOs, CIOs and End Users - Mike Fey … an hour ago | www.youtube.com
browser case case studies cisos +17
Hacking AI Bias with Human Techniques - Keith Hoodlet - ASW #284 an hour ago | www.youtube.com
ai bias apps bias bounties +16
AI & Hype & Security (Oh My!) - Caleb Sima - ASW #284 an hour ago | www.youtube.com
access access controls ai safety ai security +18
Weird Al, Docker, OT, Gitlab, Credit Monitoring, Dropbox, Cisco, AI, Aaran Leyland... - SWN #383 3 days ago | www.youtube.com
cisco credit credit monitoring docker +7
RSAC 2024 Monday Live Stream Schedule 3 days, 1 hour ago | www.youtube.com
live monday rsac rsac 2024 +2
RSA Conference, Verizon DBIR, funding, reports, partnerships and more - ESW #360 3 days, 2 hours ago | www.youtube.com
acquisitions announcements big companies +13

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Consultant infrastructure sécurité H/F

@ Hifield | Sèvres, France
View on infosec-jobs.com

SOC Analyst

@ Wix | Tel Aviv, Israel
View on infosec-jobs.com

Information Security Operations Officer

@ International Labour Organization | Geneva, CH, 1200
View on infosec-jobs.com

PMO Cybersécurité H/F

@ Hifield | Sèvres, France
View on infosec-jobs.com

Third Party Risk Management - Consultant

@ KPMG India | Bengaluru, Karnataka, India
View on infosec-jobs.com

Consultant Cyber Sécurité H/F - Strasbourg

@ Hifield | Strasbourg, France
View on infosec-jobs.com
View more jobs