The Latest Supply Chain Attack Vector Targets Visual Studio Marketplace


Share post:

Researchers from Aqua Security have discovered that supply chain attacks are being carried out by hackers using Visual Studio Marketplace.

Researchers found that attackers could pose as well-known VS Code extensions to lure developers into downloading malicious versions, according to a recent report. The majority of developers (about 74.48 percent) use VS Code, making it the most widely used IDE. Part of what makes VS Code so popular is the enormous selection of extensions that are readily available. The researchers raise issues with the verification process as well.

Also read: How No-code Product Designs Are Becoming a Trend for Developers

Developers would anticipate that a blue checkmark would be displayed for authors who have been confirmed to be who they claim to be, but instead it is simply displayed to indicate that the publisher has established domain ownership.

TalkDev Bureau
TalkDev Bureau
The TalkDev Bureau has five well-trained writers and journalists, well versed in B2B enterprise technology industry, and constantly in touch with industry leaders for the latest trends, opinions, and other inputs- to bring you the best and latest in the domain.


Please enter your comment!
Please enter your name here


Related articles

Anodot Partners with AWS ISV Accelerate Program to Optimize Cloud Costs for AWS Customers

Anodot partners with Amazon Web Services (AWS) Independent Software Vendor (ISV) Accelerate Program. This will allow the company...

Qlik Expands Customers’ Ability to Scale AI with AWS

Qlik expands its customers’ landscape to scale the power of large language models (LLMs) and generative artificial intelligence...

ChaosSearch Uncovers Integration with Amazon Bedrock

ChaosSearch announced the integration of Chaos LakeDB with Amazon Bedrock from AWS to develop and scale generative AI...

Top 5 Unreal Game Engine Plugins in 2024

Unreal Engine stands as an immensely potent game engine. Plugins play a crucial role in it to extend...