Cybersecurity analysts have discovered two harmful extensions within the Visual Studio Code (VSCode) Marketplace, intended to deliver ransomware that is still being developed to its users.
The extensions, referred to as “ahban.shiba” and “ahban.cychelloworld,” have since been removed by the marketplace administrators.
According to ReversingLabs, both extensions contain code engineered to trigger a