Information security
fromThe Hacker News
1 day agoMalicious VSX Extension "SleepyDuck" Uses Ethereum to Keep Its Command Server Alive
A malicious Open VSX extension (juan-bianco.solidity-vlang) contains a SleepyDuck remote access trojan that uses Ethereum contracts for resilient command-and-control and exfiltrates system data.