|
|
|
|
|
|
by cookiengineer
2 days ago
|
|
|
Microsoft's introduction of 2 hour latencies for vscode extension installations to mitigate the ongoing worm spread is absolutely bonkers. They did not read the source code of the worm implant and have absolutely no clue how the worm works, if that is their response. The only way to meaningfully stop the worm is by requiring manual confirmations for git commit/push actions and for the auto-executed hooks in all IDEs. Also, these scripts should be sandboxed to only be allowed to run and interact with files inside the same opened project folder. Well, that, or setting the host system language to Russian. Which I am kind of expecting Microsoft to do next... |
|
|