Visual Studio Marketplace is the latest supply chain attack vector
Aqua Security researchers have found that hackers are using Visual Studio Marketplace to conduct supply chain attacks.
In a new report, the researchers uncovered that attackers could impersonate popular VS Code extensions to trick developers into downloading malicious versions.
VS Code is the most popular IDE, with around 74.48 percent of developers using it. The vast array of extensions available for VS Code is partly what drives its popularity.
Here are some...