1 link tagged with all of: supply-chain + data-exfiltration
Click any tag below to further narrow down your results
Links
Researchers found two harmful VS Code extensions that appear as AI coding assistants but secretly send user data to servers in China. With over 1.5 million installs, they capture file content and modifications without user consent, while also incorporating analytics SDKs to track users.