Malicious Pull Request Hits 6,000+ Developers: How the Ethcode VS Code Extension Became a Supply Chain Attack Target
|

Malicious Pull Request Hits 6,000+ Developers: How the Ethcode VS Code Extension Became a Supply Chain Attack Target

ByInnoVirtuoso

What happens when your favorite developer tool turns into a cybersecurity nightmare overnight? If you use the Ethcode VS Code extension, you might have just dodged a digital bullet. In June 2025, a savvy but malicious actor exploited a surprising vulnerability—slipping dangerous code into a popular open-source project. Over 6,000 developers were at risk, and…

Malicious Open Source Packages Surge 188%: What Every Developer Needs to Know About the 2025 Open Source Malware Spike
|

Malicious Open Source Packages Surge 188%: What Every Developer Needs to Know About the 2025 Open Source Malware Spike

ByInnoVirtuoso

If you’ve ever relied on open source libraries to speed up your projects—or if you’re simply concerned about how software makes its way onto your devices—what’s happening right now in the world of open source malware should grab your full attention. A staggering 188% year-over-year jump in malicious open source packages isn’t just a scary…