Apr 7, 2025 · A set of ten VSCode extensions on Microsoft's Visual Studio Code Marketplace pose as legitimate development tools while infecting users with the XMRig cryptominer for Monero. Microsoft VSCode is a ...

Oct 10, 2021 · The result showed files that were installed by VS Code were detected as malicious. See attached screen capture. Visual Studio creates a directory on the server /.vscode-server.

Jun 9, 2024 · Below is an example of code found in a malicious Visual Studio Code Marketplace extension that opens a reverse shell to the cybercriminal's server.

Apr 7, 2025 · Developers using Microsoft’s Visual Studio Code (VSCode) editor are being warned to delete, or at least stay away from, 10 newly published extensions which will trigger the installation of a ...

May 16, 2023 · Threat actors keep searching for new ways to infect users, and open-source code components can be a common source for infections—especially the more common ones. As such, we’ve decided to investigate VSCode extensions in search of malicious ones.

May 25, 2020 · I'm currently taking Pluralsight's "Learn Programming in C++" course and compiled a C++ application using MS Visual Studio 2019 consisting of four lines: int main () return 0; It was identified by multiple engines on virustotal.com as a threat, specifically by Windows Defender as Trojan:Win32/Fuerboos.C!cl.

Dec 18, 2024 · Two of the malicious domains chosen to appear legitimate are 'microsoft-visualstudiocode[.]com' and 'captchacdn[.]com,' while others used TLDs like '.lat' and '.ru.'

Oct 14, 2024 · Malicious code is often hidden within Visual Studio project files (.csproj or .vcxproj) to evade detection, automatically executing when the project is built. So it's a years-long ongoing story that continues today. Just last week, for example, sister pub RedmondMag reported on a Microsoft security rollout that includes this:

May 19, 2020 · So, first time code-writer here. I just got VSC and am trying to do your typical "Hello World" basic line in the output. Nothing harmful. When I run the code (shown below) I am immediately met by Avast saying they blocked me from Win32:MalwareGen. I did not think saying hello would be so dangerous. Input. #include <iostream> // first comment!

It's most likely a false positive from your antivirus or you have a virus on your machine that's doing something when you run your code. I'd get some different AV software and run a scan on your machine or if the machine doesn't belong to you I'd take it to your IT Help Desk.