🚨 Security Alert in VSCode Marketplace! 🚨
Two malicious extensions, disguised as AI coding assistants, have been found exfiltrating developer data to China-based servers — with over 1.5 million installs. Here’s what you need to know:
-
Extensions in Focus:
- ChatGPT – ä¸æ–‡ç‰ˆ: 1.34 million installs
- ChatMoss (CodeMoss): 150k installs
-
Data Theft Mechanisms:
- File Monitoring: Opens and transmits entire file contents to attackers.
- Workspace Harvesting: Stealthily sends up to 50 files per interaction.
- User Profiling: Employs analytics SDKs to track activities and build identity profiles.
Koi Security emphasizes the risk of exposing sensitive data, including source code and credentials. Microsoft is investigating the matter.
💡 Guard your code and inform your network! Share this vital update with your connections to keep everyone protected. Stay secure in the ever-evolving world of AI!
