Malicious VSCode Marketplace extensions hid trojan in fake PNG file
speckx Thursday, December 11, 2025
Summary
Researchers have discovered malicious Visual Studio Code extensions on the Marketplace that conceal a Trojan in a fake PNG file, potentially compromising users' systems. The extensions were designed to bypass security checks and deliver malware to unsuspecting developers.
5
0
Summary
bleepingcomputer.com