|
|
|
|
|
|
by codebje
242 days ago
|
|
|
There's no self-propagation happening, that's just the terrible article's breathless hyping of how devastating the attack is. It's plain old deliberately injected and launched malware. OpenVSX is a huge vector for malicious actors taking real Marketplace extensions, injecting a payload, and uploading them. The article lists exactly one affected Marketplace extension, but that extension does not exist. > Has no one thought to review the AI slop before publishing? If only Koi reviewed their AI slop before publishing :( |
|
|