Malicious VS Code Extensions on Microsoft’s Registry Drop Info-Stealers and Trojan Malware

By Azhar Khan
Malicious VS Code Extensions on Microsoft’s Registry Drop Info-Stealers and Trojan Malware

Developers are being warned after multiple malicious extensions were discovered on the official Visual Studio Code Marketplace, designed to compromise developer machines and exfiltrate sensitive data. These malicious packages masqueraded as legitimate themes or productivity tools before deploying infostealers, credential harvesters, and remote-access malware, transforming trusted IDE environments into supply-chain attack vectors.

How Legitimate Extensions Became Infection Vectors

Extensions intended for code formatting, themes or AI assistance appeared harmless at first glance. However, security analysts identified several such extensions embedded with malicious payloads. Once installed, they dropped infostealers or remote-access trojans capable of running hidden background processes. In some cases the malicious code exploited Windows registry and OS permissions to gain deeper access to files, credentials, browser session data, and even crypto-wallet information.

One such extension triggered automatically on Editor startup and executed OS-level commands — something no legitimate theme or helper needs to do. Another employed a multi-stage loader that silently downloaded encrypted payloads, decrypted them at runtime, and loaded dynamic libraries that remained hidden from casual inspection or static antivirus scanners.

What the Malware Does — from Credential Theft to Persistent Backdoor

Once active, the malicious extensions performed a range of harmful operations:

  • Exfiltration of local files such as code repositories, configuration files, SSH keys, and environment settings.
  • Theft of credentials — including GitHub or npm tokens, user logins, stored passwords, cookies and session data from browsers and developer tools.
  • Deployment of stealthy remote-access tools (RATs) granting attackers persistent control over the compromised machine.
  • Installation of cryptomining modules or proxy agents to leverage infected machines for further malicious activity, sometimes as part of a wider botnet or supply-chain distribution network.
  • Capability to act as a beachhead for wider intrusion — allowing attackers to pivot from developer environments to production systems, cloud accounts, or downstream clients.

Why Developers and Organisations Are Especially Vulnerable

Developers using Visual Studio Code often grant extensions significant permissions, including access to file systems, network, and OS commands. Because VS Code extensions are delivered through a trusted marketplace — which many assume is safe — malicious actors can exploit this trust. Furthermore, extension auto-update mechanisms can silently push compromised code after an extension is already in use, turning a benign tool into malware without additional user interaction.

Organizations relying on developer environments for production deployments or handling sensitive data such as proprietary source code, credentials, or infrastructure configuration are at elevated risk. A compromised development machine can endanger build pipelines, release workflows, and supply-chain integrity across entire software organisations.

What Has Been Done So Far

Several of the identified malicious extensions have already been removed from the VS Code Marketplace following discovery and public reporting. Platform operators have revoked the offending publisher accounts and removed associated extensions. However, researchers warn that similar threats remain active, including packages still distributed via alternative registries or resubmitted under new publisher identities.

As part of mitigation efforts, security teams recommend auditing installed extensions, removing any that are not strictly necessary, and reviewing system processes and network activity for suspicious behaviour. Developer organisations are being urged to treat IDE extensions as part of their software supply-chain risk profile — subject to the same scrutiny as libraries, dependencies, and CI/CD tooling.

Recommendations for Safer Extension Use

To reduce risk while using VS Code or similar IDEs, security experts recommend:

  • Only install extensions from well-known, reputable publishers; avoid ones with few downloads or unclear authorship.
  • Regularly review and prune installed extensions — disable or uninstall those not actively used.
  • Apply principle of least privilege: avoid extensions that request unnecessary OS-level permissions unless absolutely required.
  • Monitor developer workstations for anomalous activity: unexpected outbound network connections, unknown background processes, or unusual file-system changes.
  • Use isolated development environments (containers or virtual machines) for sensitive projects, reducing risk if a developer machine is compromised.
  • Implement strict credential hygiene: rotate API keys, tokens, and secrets regularly; avoid embedding sensitive values in local config files.

Implications for the Broader Software Supply Chain

The recent incidents demonstrate that even development tooling and extension marketplaces can become effective supply-chain attack surfaces. As more organisations adopt open-source IDEs and rely on community-published extensions, the potential impact of malicious or compromised extensions increases. The threat no longer targets only end-users of finished software — it targets the very pipeline used to build and deliver that software.

For software vendors, enterprises, and open-source maintainers, this signals a need to expand trust boundaries: vet not only third-party libraries and dependencies, but also developer tools, IDE extensions, and IDE-included plugins. Without such holistic scrutiny, attackers may continue to exploit these overlooked vectors to gain early footholds, steal intellectual property, or compromise supply chains long before applications reach production.

Conclusion

The discovery of malicious VS Code extensions delivering infostealers, RATs, and cryptominers serves as a stark reminder that supply-chain risk extends beyond dependencies and libraries — it includes the development environment itself. Developers and organisations must rethink their assumptions about trust in tooling, strengthen oversight of third-party extensions, and treat IDE extensions with the same caution applied to dependencies and runtime libraries. Vigilance, combined with careful extension hygiene, will be key to preventing further infections and safeguarding intellectual property and infrastructure.

Azhar Khan
Azhar Khan
Azhar is a seasoned Cybersecurity Professional with over 8 years of experience in Cybersecurity Research.