URL has been copied successfully!
VSCode IDE forks expose users to “recommended extension” attacks
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

VSCode IDE forks expose users to “recommended extension” attacks


Tags: , , , ,

Popular AI-powered integrated development environment solutions, such as Cursor, Windsurf, Google Antigravity, and Trae, recommend extensions that are non-existent in the OpenVSX registry, allowing threat actors to claim the namespace and upload malicious extensions.

First seen on bleepingcomputer.com

Jump to article: www.bleepingcomputer.com/news/security/vscode-ide-forks-expose-users-to-recommended-extension-attacks/

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Privacy Roundup: Week 4 of Year 2025
  2. Trusted Cloud Edge in Practice: Transforming Critical Industries
  3. Security researchers caution app developers about risks in using Google Antigravity
  4. Hackers Are Using Shared AI Chats to Steal Your Passwords and Crypto