The Open VSX extension “fast-draft” by KhangNghiem has been weaponized to distribute malware, joining a growing trend of supply chain attacks targeting developer environments. With over 26,000 downloads, the extension executed a GitHub-hosted downloader to drop a remote access trojan and information stealer. The malicious releases include versions 0.10.89, 0.10.105, 0.10.106, and 0.10.112. Interestingly, these […] The post Threat Actors Weaponized Open VSX Extension To Drop RAT and Stealer via GitHub appeared first on Cyber Security News.