Malicious VSCode extensions with millions of installs discovered (www.bleepingcomputer.com)

submitted 8 months ago by neme@lemm.ee to c/vscode@programming.dev

3 comments fedilink hide all child comments

top 3 comments

sorted by: hot top controversial new old

[-] Deebster@programming.dev 22 points 8 months ago* (last edited 8 months ago)

I'd like to see permissions in VSCode plugins, so e.g. I could see that a plugin x can't touch the filesystem or internet and is therefore more likely to be benign.

[-] KazuyaDarklight@lemmy.world 12 points 8 months ago

"A group of Israeli researchers explored the security of the Visual Studio Code marketplace and managed to "infect" over 100 organizations by trojanizing a copy of the popular 'Dracula Official theme to include risky code. Further research into the VSCode Marketplace found thousands of extensions with millions of installs."

[-] towerful@programming.dev 2 points 8 months ago

The plugin is called "Darcula Official" btw.

There is a more generic theme (for multiple applications) called Dracula.
JetBrains IDE has a theme called Darcula, and there are vscode themes on the marketplace that implement this.

So, it's more than just a typosquat

this post was submitted on 09 Jun 2024

50 points (100.0% liked)

VS Code

842 readers

3 users here now

founded 2 years ago

MODERATORS

Ategon@programming.dev

Lodra@programming.dev