Subscribe

Malicious code in millions of installs traced to Microsoft Visual Studio

A group of Israeli researchers found thousands of potentially harmful extensions on the Visual Studio Code (VSCode) Marketplace, with some having millions of downloads. The researchers created a fake extension mimicking the popular ‘Dracula Official’ theme, dubbed ‘Darcula’, which included risky code to collect system information. This extension was downloaded by multiple high-value targets, including a publicly listed company and major security firms.

Using a custom tool called ‘ExtensionTotal’, the researchers discovered 1,283 extensions with known malicious code, 8,161 communicating with hardcoded IP addresses, and 1,452 running unknown executables. Despite reporting these findings to Microsoft, many of these extensions remained available for download as little as a day ago.

The researchers warn that the lack of stringent security controls on the VSCode Marketplace poses a significant threat to organizations.

 

Top Stories

Toyota confirms leak of 240GB of sensitive data in recent hack

Former Google CEO Eric Schmidt makes controversial comments

Study finds 94% of spreadsheets have critical errrors

Study says 94% of spreadsheets contain critical errors

Elon Musk claims DDoS attack caused issues in live-streamed interview with Trump – experts are skeptical

Google anti-trust ruling a financial disaster for Firefox

Related Articles

HTI-step one Finally Signal ASTP Assistant Assistant to own Technology Plan

May 11, 2026 Most other intimate source, such as other kid, Disregard Holtz, affirmed he could be “ 11may however fighting more...

A glance at Pope Francis’ previous hospitalizations and you can health problems

May 11, 2026 Government said Monday he's investigating the fresh disappearance from Nancy Guthrie, mom from "Today" host Savannah Guthrie, as more...

Verde Kasino Maklercourtage Für Neue & Aktive Gamer

May 11, 2026 Diese Summe sorgt zu diesem zweck, so Promo-Codes für jedes Sportwetten nicht gleichwohl sonstige Möglichkeiten präsentation, zugunsten nebensächlich more...

Offlin casinos over snelle uitkering 2026

May 11, 2026 Bank 777 bestaan men van gij snelst uitbetalende online casino’su, want dit goksite rechtstreeks uitbetaalt. Het uitbetalin worden more...

Jim Love

Jim Is and author and pud cast host with over 40 years in technology.

Share:
X/Twitter
Linkedin
Blue Sky
Tech News Day is a daily publication featuring key news stories about technology and how it affects businesses.

Follow Us

X-twitter Linkedin-in

Popular categories

Tech News Delivered

New, Relevant Tech Stories. Our selection is done by industry professionals – executives like you who pick the top stories for that day. Our writers summarize them to give you the key takeaways.
Subscribe
© 2025 TECHNEWSDAY. All rights reserved.