VSCode Marketplace Removes Two Extensions Deploying Early-Stage Ransomware

Updated on March 24, 2025

Cybersecurity researchers have uncovered two malicious extensions in the Visual Studio Code (VSCode) Marketplace that are designed to deploy ransomware that’s under development to its users.
The extensions, named “ahban.shiba” and “ahban.cychelloworld,” have since been taken down by the marketplace maintainers.
Both the extensions, per ReversingLabs, incorporate code that’s designed to invoke a…

Read the rest of the story at Read More

Source: The Hacker News

December 29, 2023 Uncategorized

Microsoft Disables MSIX App Installer Pr...

August 5, 2024 Uncategorized

Researchers Uncover Flaws in Windows Sma...

September 18, 2024 Uncategorized

VSCode Marketplace Removes Two Extensions Deploying Early-Stage Ransomware

Related posts

Microsoft Disables MSIX App Installer Pr...

Researchers Uncover Flaws in Windows Sma...

Chrome Introduces One-Time Permissions a...

Leave a Comment Cancel reply

Recent News

Wormable AirPlay Flaws Enable Zero-Click RCE on Apple Devices via Public Wi-Fi

Commvault CVE-2025-34028 Added to CISA KEV After Active Exploitation Confirmed

⚡ Weekly Recap: Nation-State Hacks, Spyware Alerts, Deepfake Malware, Supply Chain Backdoors

Perfection is a Myth. Leverage Isn’t: How Small Teams Can Secure Their Google Workspace

Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack

Iranian Hackers Maintain 2-Year Access to Middle East CNI via VPN Flaws and Malware

U.S. Charges Yemeni Hacker Behind Black Kingdom Ransomware Targeting 1,500 Systems

TikTok Slammed With €530 Million GDPR Fine for Sending E.U. Data to China

How to Automate CVE and Vulnerability Advisory Response with Tines