Threat actors are spreading malicious extensions via VS marketplaces

Threat actors are spreading malicious extensions via VS marketplaces

Briefly

"Careless developers publishing Visual Studio extensions to two open marketplaces have been including access tokens and other secrets that can be exploited by threat actors, a security vendor has found. The discovery was made earlier this year by researchers at Wiz, who quietly worked with Microsoft and its VSCode Marketplace as well as those behind the OpenVSX marketplace to improve guardrails in their platforms. It released a report on its investigation this week."

"Wiz found over 550 validated secrets, distributed across more than 500 extensions from hundreds of VS extension publishers. They included AI provider secrets for platforms such as OpenAI, Gemini, Anthropic, xAI, DeepSeek, HuggingFace, and Perplexity; high risk profession platform secrets for AWS, Github, Stripe, Auth0, and Google Cloud Platform; and database secrets for MongoDB, Postgres, and Supabase. Over 100 valid leaked Azure DevOps Personal Access Tokens were identified within VSCode Marketplace extensions. Together, they represented an install base of over 85,000 extension installs."

"Over thirty leaked OVSX access tokens were identified, within either VSCode Marketplace or OVSX extensions. Together they represented over 100,000 extension installs. The largest contributor to secrets leakage was the bundling by developers of hidden files, also known as dotfiles, says the report. The quantity of .env files was especially prominent, although hardcoded credentials in extension source code were also prevalent."