CIRCLE WITH A DOT

Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

#GitHub was compromised again… via a poisoned #VSCode extension.

3 Posts 2 Posters 0 Views

G This user is from outside of this forum
G This user is from outside of this forum
ghostwriter@phpc.social

wrote last edited by

#1

#GitHub was compromised again… via a poisoned #VSCode extension.
https://xcancel.com/github/status/2056949168208552080
https://xcancel.com/github/status/2056884788179726685
W 1 Reply Last reply

0
G ghostwriter@phpc.social

#GitHub was compromised again… via a poisoned #VSCode extension.
https://xcancel.com/github/status/2056949168208552080
https://xcancel.com/github/status/2056884788179726685
W This user is from outside of this forum
W This user is from outside of this forum
wdormann@infosec.exchange

wrote last edited by

#2

@ghostwriter
A "poisoned" VSCode extension...
Does that convey a legitimate extension that was compromised (in what way?)?
Or a VSCode extension that is inherently malicious?
I feel like there's an important difference.
W 1 Reply Last reply

0
W wdormann@infosec.exchange

@ghostwriter
A "poisoned" VSCode extension...
Does that convey a legitimate extension that was compromised (in what way?)?
Or a VSCode extension that is inherently malicious?
I feel like there's an important difference.
W This user is from outside of this forum
W This user is from outside of this forum
wdormann@infosec.exchange

wrote last edited by

#3

@ghostwriter
Ah, apparently it was compromised
1 Reply Last reply
1
0
R relay@relay.infosec.exchange shared this topic

Log in to reply