Fake VS Code extension on npm uses altered ScreenConnect utility as spyware

Fake VS Code extension on npm uses altered ScreenConnect utility as spyware
一个假冒的“Truffle for VS Code”扩展发布在npmjs上，利用篡改的ScreenConnect工具作为间谍软件，导致安装该包的Windows系统被入侵。 2025-2-5 17:14:18 Author: securityboulevard.com(查看原文) 阅读量:0 收藏

A counterfeit ‘Truffle for VS Code’ extension, published on the npmjs registry, abuses the ConnectWise ScreenConnect remote desktop utility, allowing threat actors to compromise Windows systems that install the package.

*** This is a Security Bloggers Network syndicated blog from 2024 Sonatype Blog authored by Ax Sharma. Read the original post at: https://www.sonatype.com/blog/fake-vs-code-extension-on-npm-uses-altered-screenconnect-utility-as-spyware

文章来源: https://securityboulevard.com/2025/02/fake-vs-code-extension-on-npm-uses-altered-screenconnect-utility-as-spyware/
如有侵权请联系:admin#unsafe.sh