Skip to content
The Nexus
DossierENTITY

Microsoft Visual Studio Code

Coverage of Microsoft Visual Studio Code in the Nexus archive.

Earliest in view: Apr 24 · 09:29 UTCMost recent: Jun 3 · 12:58 UTC
Co-mentioned in this coverage
Recent coverage
  • SECURITYJun 3 · 12:58 UTCTHE HACKER NEWS
    One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens

    Cybersecurity researchers disclosed a one-click attack via Microsoft Visual Studio Code that can steal GitHub OAuth tokens, allowing attackers to read and write to user repositories, including private ones. The attack exploits GitHub's GitHub.dev feature, enabling token theft through a malicious link click.

  • SECURITYMay 21 · 04:27 UTCTHE HACKER NEWS
    GitHub Internal Repositories Breached via Malicious Nx Console VS Code Extension

    GitHub confirmed that a breach of its internal repositories resulted from a compromised employee device running a poisoned version of the Nx Console VS Code extension. The nrwl.angular-console extension was compromised after one of the Nx team's developer systems was hacked.

  • SECURITYMay 19 · 07:49 UTCTHE HACKER NEWS
    Compromised Nx Console 18.95.0 Targeted VS Code Developers with Credential Stealer

    A compromised version of the Nx Console extension was published to the Microsoft Visual Studio Code Marketplace, targeting VS Code developers with a credential stealer. The affected extension is rwl.angular-console, version 18.95.0, with over 2.2 million installations. Cybersecurity researchers have flagged this compromise.

  • SECURITYApr 24 · 09:29 UTCTHE HACKER NEWS
    Tropic Trooper Uses Trojanized SumatraPDF and GitHub to Deploy AdaptixC2

    A cyber campaign targeting Chinese-speaking individuals uses a trojanized version of SumatraPDF to deploy the AdaptixC2 Beacon malware, leveraging Microsoft Visual Studio Code tunnels for remote access. Zscaler ThreatLabz attributed the attack with high confidence to the Tropic Trooper threat group.