Cybersecurity & Data Protection
0
UPVOTE
thehackernews.com

Malicious JetBrains Plugins Steal AI API Keys as Chrome Extensions Capture Chatbot Chats

Cybersecurity researchers have flagged a "coordinated malware campaign" on the JetBrains Marketplace that has published no less than 15 malicious plugins capable of exfiltrating artificial intelligence (AI) provider keys. "Every plugin poses as an AI coding assistant built on DeepSeek and other large language models, offering chat, commit messages, code review, bug finding, and unit tests,"
Malicious JetBrains Plugins Steal AI API Keys as Chrome Extensions Capture Chatbot Chats
Giulia

Giulia

1h ago
0 0

Discussion

Be the first to comment

Add your perspective to get the discussion started.

No comments yet.

Be the first to share your take and keep the conversation moving.

Join the conversation

Log in or sign up to add your comment and participate in the discussion!

Log In Sign Up

UPVOTERS

Community appreciation

See who found this content valuable and showed their support.

No upvotes yet.

Be the first to show your appreciation for this content.

TOPICS

Explore the same topics

Discover more content from the topics this post is mapped to.

bleepingcomputer.com
India's Telegram ban hit the UAE too. Here's how to get around …

India has banned Telegram until June 22 after the app was used to circulate leaked exam papers. CEO Pavel Durov accuses telecom Reliance of BGP hijacking that…
Giulia

Giulia

1h ago
0
thehackernews.com
The Top 10 Attack Surface Exposures in 2026

Breaches don't always start with a zero-day. An exposed admin panel can get brute-forced, or credentials reused from a previous attack. But when a vulnerabilit…
TN

The Hacker News

3h ago
0
bleepingcomputer.com
Malicious JetBrains Marketplace plugins steal AI API keys from …

At least 15 malicious plugins found on the JetBrains Marketplace were designed to steal AI API keys from developers. [. .. ]
Rosa Martinez

Rosa Martinez

11h ago
0
darkreading.com
Fileless Phantom Stealer Targets Browser Credentials

In addition to executing entirely in memory, the malware's infection chain incorporates other anti-analysis techniques designed to frustrate detection.
DR

Dark Reading

16h ago
0
thehackernews.com
Google Vertex AI SDK Flaw Let Attackers Hijack Model Uploads vi…

A flaw in the Google Cloud Vertex AI SDK for Python let an attacker with no access to a victim's project hijack the victim's machine learning model upload and…
TN

The Hacker News

18h ago
0
bleepingcomputer.com
Steam Workshop abused to spread malware via Wallpaper Engine ap…

Threat actors are abusing Steam Workshop, Valve's community hub for downloading game-related content, to push various malware hidden in wallpaper packages. [.…
Carlos the great

Carlos the great

20h ago
0

Keep browsing

Explore more from this topic

Dive into the full feed of curated posts covering Cybersecurity & Data Protection.

Browse Topics

RELATED CONTENT

Continue exploring

Discover more content that aligns with your interests and this post.

thehackernews.com
The Top 10 Attack Surface Exposures in 2026

Breaches don't always start with a zero-day. An exposed admin panel can get brute-forced, or credentials reused from a previous attack. But when a vulnerabilit…
TN

The Hacker News

3h ago
0
thehackernews.com
Google Vertex AI SDK Flaw Let Attackers Hijack Model Uploads vi…

A flaw in the Google Cloud Vertex AI SDK for Python let an attacker with no access to a victim's project hijack the victim's machine learning model upload and…
TN

The Hacker News

18h ago
0
thehackernews.com
New Rokarolla Android Malware Steals PINs, SMS Codes, and Crypt…

Security researchers at Zimperium's zLabs have documented a new Android banking trojan, Rokarolla, that targets 217 banking and cryptocurrency apps a…
TN

The Hacker News

1d ago
0
thehackernews.com
Survey: 94% of Incidents Involve Anonymized Infrastructure. Tea…

Security teams have never had more IP data at their disposal. Every day, analysts ingest enrichment feeds, geolocation data, reputation scores, telemetry, and…
TN

The Hacker News

1d ago
0
thehackernews.com
Attackers Exploit Three Fortinet FortiSandbox Flaws, One Patche…

Bad actors are exploiting multiple security vulnerabilities in Fortinet FortiSandbox, according to threat intelligence firm Defused Cyber. In a post shared on…
TN

The Hacker News

1d ago
0
thehackernews.com
Sniper Dz Scams Target MENA Users via Fake Facebook Offers and …

Cybersecurity researchers have disclosed details of fraudulent activity targeting users across the Middle East and North Africa by employing various fraudulent…
TN

The Hacker News

2d ago
0

Still curious?

See more related posts

Keep the inspiration flowing with fresh submissions and trending finds from the community.

View Latest