The Hacker News

Over 100 VS Code Extensions Exposed Developers to Hidden Supply Chain Risks

New research has uncovered that publishers of over 100 Visual Studio Code (VS Code) extensions leaked access tokens that ...
CSO Online

Threat actors are spreading malicious extensions via VS marketplaces

There isn’t a consistent threat model for extension marketplaces yet, McCarthy said, making it difficult for any platform to ...
ZDNet

Amazon: New CloudShell gives you command-line access to AWS from a browser

Amazon Web Services has launched CloudShell, its browser-based shell for command-line access to run scripts and access various AWS resources. The developer web-based shell is for developers who prefer ...

Amazon EC2 instances under fire from whoAMI attacks potentially giving hackers code execution access

A flaw named WhoAMI was found in Amazon Machine Image It allows threat actors to gain RCE abilities on people's AWS accounts ...