Malicious VSCode extensions on Microsoft's registry drop infostealers

Two malicious extensions on Microsoft's Visual Studio Code Marketplace infect developers' machines with information-stealing ...
Bleeping Computer

VSCode Marketplace can be abused to host malicious extensions

Researchers have found it surprisingly easy to upload malicious Visual Studio Code extensions to the VSCode Marketplace, and discovered signs of threat actors already exploiting this weakness. Visual ...
Visual Studio Magazine

Threat Actors Keep Weaponizing VS Code Extensions

Threat actors are still abusing Visual Studio Code extensions as an entry point, with the latest fake Prettier incident ...

VSCode extensions pulled over security risks, but millions of users have already installed

Security researchers found malicious code hiding in two VSCode extensions Microsoft quickly pulled them and notifies users ...
InfoWorld

11 VS Code extensions you didn’t know you needed

These surprising Visual Studio Code extensions aren't just for writing and editing code—though they'll also help you do that. Visual Studio Code is a terrific software development environment, and not ...
GIGAZINE

VSCan can detect malicious VSCode extensions

A free diagnostic tool called ' VSCan ' has been released that checks the code of extensions released for Visual Studio Code (VScode) and checks for security issues. Enter the extension's name or ID ...