1-Click to Infiltrate Your Organization via Vulnerable VS Code Extensions
Offered By: Ekoparty Security Conference via YouTube
Course Description
Overview
Explore a conference talk from Ekoparty 2021 that delves into the emerging threat of vulnerable VS Code extensions as a means for attackers to compromise organizations through developers. Learn how popular VS Code extensions can be exploited to carry out supply chain attacks, shifting the focus from traditional attack vectors like malicious third-party packages, leaked credentials, and unpatched vulnerabilities. Gain insights from security researchers Raul Onitza-Klugman and Kirill Efimov as they discuss their findings and demonstrate the potential risks associated with IDE vulnerabilities. Discover the importance of securing development environments and staying vigilant against evolving cyber threats in this 32-minute presentation from the Ekoparty Security Conference main track.
Syllabus
1-click to infiltrate your organization via vulnerable VS Code extensions ▪ Ekoparty 2021
Taught by
Ekoparty Security Conference
Related Courses
Case Studies in Embedded VR - Silvio Cesare - Ekoparty Security Conference - 2022Ekoparty Security Conference via YouTube The Making of an Aerospace Village Badge - Dan Allen - Ekoparty 2021: Patagon Aerospace
Ekoparty Security Conference via YouTube IIoT, Data Infrastructure, Smart Factory - Sarka Pekarova - Ekoparty 2021: OT - IIOT - IOT Space
Ekoparty Security Conference via YouTube Gotham City- SSH from Zero to Trust - Lucas Calisi - Ekoparty Security Conference - 2021
Ekoparty Security Conference via YouTube Sleight of ARM- Demystifying Intel Houdini - Brian Hong - Ekoparty 2021- Hardware Hacking Space
Ekoparty Security Conference via YouTube