Browser extensions turned malicious after years of legitimate operation in DarkSpectre campaign affecting millions. The ...
Security researchers found two Chrome extensions with 900,000 installs secretly collecting ChatGPT and DeepSeek chats and ...
Chrome extensions called "Phantom Shuttle" stole user data for years before Google removed them from the Chrome Web Store ...
AI-based VS Code forks recommended unclaimed extensions, allowing malicious uploads in Open VSX and risking developer systems ...
Zoom users should exercise extreme caution when installing browser extensions, particularly those claiming Zoom-related ...
A new pair of malicious Visual Studio Code extensions capable of harvesting screenshots, browser sessions and stored credentials has been discovered by cybersecurity researchers. The extensions, ...
Two malicious extensions on Microsoft's Visual Studio Code Marketplace infect developers' machines with information-stealing malware that can take screenshots, steal credentials, crypto wallets, and ...
A stealthy campaign with 19 extensions on the VSCode Marketplace has been active since February, targeting developers with malware hidden inside dependency folders. The malicious activity was ...
DarkSpectre refers to three malware campaigns tied to malicious browser extensions, including 'sleeper' extensions that seem legit, but are not.
Threat actors used two malicious Chrome extensions that have 900,000 users to steal their chats with AI models like ChatGPT ...
Threat actors continue to probe Visual Studio Code's extension ecosystem, and a late November incident shows how quickly a trusted developer tool can be turned into a supply chain beachhead. In a ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback