News

Infosecurity Magazine18h

Malicious VS Code Extensions Exploit Name Reuse Loophole

Visual Studio Code extensions have been identified exploiting a loophole that allows reuse of names from removed packages ...
The Hacker News13h

Researchers Find VS Code Flaw Allowing Attackers to Republish Deleted Extensions Under Same Names

VS Code flaw lets attackers reuse deleted extension names, enabling ransomware payload delivery and supply chain risks.

PyPI now blocks domain resurrection attacks used for hijacking accounts

The Python Package Index (PyPI) has introduced new protections against domain resurrection attacks that enable hijacking ...