Just a moment...
www.bleepingcomputer.com

Edit 2025-04-09 16:42Z - article was updated with a tenth package (Prettier - Code)

A set of ten VSCode extensions on Microsoft’s Visual Studio Code Marketplace pose as legitimate development tools while infecting users with the XMRig cryptominer for Monero.

ExtensionTotal researcher Yuval Ronen has uncovered ten VSCode extensions published on Microsoft’s portal on April 4, 2025.

The package names are:

  1. Prettier - Code for VSCode (by prettier) - 486K installs
  2. Discord Rich Presence for VS Code (by Mark H) - 189K installs
  3. Rojo – Roblox Studio Sync (by evaera) - 117K installs
  4. Solidity Compiler (by VSCode Developer) - 1.3K installs
  5. Claude AI (by Mark H)
  6. Golang Compiler (by Mark H)
  7. ChatGPT Agent for VSCode (by Mark H)
  8. HTML Obfuscator (by Mark H)
  9. Python Obfuscator for VSCode (by Mark H)
  10. Rust Compiler for VSCode (by Mark H)
  • msage@programming.dev
    41·
    3 months ago

    Can your Linux do that?

    .

    .

    .

    .

    .

    .

    .

    .

    Yes, of couse it can, all of that and even more!

  • Colloidal@programming.devEnglish
    1·
    3 months ago

    Yo, @drspod@lemmy.ml, check the article again. Prettier, a very popular extension, heads the list now:

    Prettier — Code for VSCode (by prettier) – 955K Installs
Discord Rich Presence for VS Code (by Mark H) – 189K Installs
Rojo — Roblox Studio Sync (by evaera) – 117K Installs
Solidity Compiler (by VSCode Developer) – 1.3K Installs
Claude AI (by Mark H)
Golang Compiler (by Mark H)
ChatGPT Agent for VSCode (by Mark H)
HTML Obfuscator (by Mark H)
Python Obfuscator for VSCode (by Mark H)
Rust Compiler for VSCode (by Mark H)
    • zygo_histo_morpheus@programming.dev
      13·
      3 months ago

      Don’t think it has anything to do with electron. VSCode is just the largest editor that people install extensions for, so it’s what makes the most sense to write malware for. If vim was more popular, I’m sure there would be more crypto mining extensions for that (I wonder how many there are? Surely more than zero?)

      • piccolo@sh.itjust.works
        2·
        3 months ago

        It also helps its as easy as clicking a button to install an extension… and i wonder how many even bother checks the source of the extension?