Researchers found malicious VS Code extensions and Go, npm, and Rust packages stealing developer data via hidden payloads and exfiltration.
The actively exploited zero-day bug — and the one therefore that needs high-priority attention — is CVE-2025-62221, which ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback