Content by Jeff Burt (5)

Security Risks of Malicious VS Code Extensions Targeting Developers

by Jeff Burt
Jeff Burt reports on the discovery of two malicious VS Code extensions targeting developers, detailing how these plugins exploited developer environments and posed significant software supply chain security risks.
Blogs

VS Code Marketplace Secret Leaks Highlight Risks in Extensions and AI Configurations

by Jeff Burt
Jeff Burt provides an in-depth report on Wiz’s investigation into a major secrets leak in VS Code extension marketplaces, exposing critical risks for Microsoft developers and AI tool users.
Blogs

WhiteCobra Targets Developers with Malicious VSCode Marketplace Extensions

by Jeff Burt
Jeff Burt’s article exposes how the WhiteCobra group exploits VSCode marketplace trust, detailing malware delivery tactics targeting developer environments. Essential background for development teams on supply chain security.
Blogs

WhiteCobra’s Malicious VSCode Extensions Pose Major Security Risk for Developers

by Jeff Burt
Jeff Burt analyzes how the WhiteCobra group is targeting developers through malicious VSCode and Open VSX extensions, unveiling sophisticated techniques for cryptocurrency and credential theft.
Blogs

Malicious Nx Packages Used in Two Waves of Supply Chain Attack

by Jeff Burt
Jeff Burt reports on a major supply chain attack against the Nx build system, highlighting credential theft, GitHub workflow abuse, and innovative use of AI CLI tools in a rapidly evolving DevOps security landscape.
Blogs

End of content

Rejoining the server...

Rejoin failed... trying again in seconds.

Failed to rejoin.
Please retry or reload the page.

The session has been paused by the server.

Failed to resume the session.
Please reload the page.