
Malicious pull request infects VS Code extension
ETHcode, a VS Code extension for Ethereum smart contract development, was compromised following a GitHub pull request.
Learn More about Malicious pull request infects VS Code extensionThreat Researcher, ReversingLabs.
find Petar Kirhmajer on:
ETHcode, a VS Code extension for Ethereum smart contract development, was compromised following a GitHub pull request.
Learn More about Malicious pull request infects VS Code extensionHere's what the RL research team knows about the suspicious SqzrFramework480 campaign, which is still available on the NuGet repository.
Learn More about Suspicious NuGet package grabs data from industrial systemsRL discovered two malicious packages and a subsequent larger campaign, showing that the approach is an emerging software supply chain attack method.
Learn More about Attackers leverage PyPI to sideload malicious DLLsGet your 14-day free trial of Spectra Assure
Get Free TrialMore about Spectra Assure Free Trial