CSO Online

Flaws in four popular VS Code extensions left 128 million installs open to attack

Three of the four vulnerabilities remained unpatched months after OX Security reported them to the maintainers.
Infosecurity-magazine.com

Malicious Microsoft VS Code Extensions Used in Cryptojacking Campaign

An unknown threat actor is deploying a large-scale, sophisticated cryptojacking campaign through a series of malicious extensions in Visual Studio Code, Microsoft’s lightweight source-code editor, ...
Infosecurity Magazine

Flaws in Popular Software Development App Extensions Allow Data Exfiltration

Four serious new vulnerabilities affect Microsoft Visual Studio Code, Cursor and Windsurf extensions, three of which remain ...
Techzine Europe

Vulnerable VS Code extensions affect tens of millions of developers

Security researchers have discovered three serious vulnerabilities in four popular VS Code extensions, which have been downloaded more than 120 million ...
マイナビニュース

VSCodeの個人情報盗む不正な拡張機能が配布、4.5万超ダウンロード

Check Point Software Technologiesは5月16日(米国時間)、「Malicious VSCode extensions with more than 45K downloads steal PII and enable backdoors - Check Point ...
ドリームニュース

Microchip社、Microchip社の開発ツールを人気のIDE内で使えるようにする ...

[NASDAQ: MCHP] - Microchip Technology Incorporated(日本法人: 東京都港区浜松町、代表: 櫟晴彦 以下Microchip社)はMicrosoft(R) VS Code(R ...
MSN による配信

I've only kept these 6 VS Code extensions after deep-cleaning the code editor

Besides its lightweight design and compatibility with all major operating systems, a massive collection of extensions is one of the biggest perks of VS Code. While the code editor is fairly powerful ...