Tag Archive for: Marketplace

Hackers Can Abuse Visual Studio Marketplace to Target Developers with Malicious Extensions

/in


Jan 09, 2023Ravie LakshmananSupply Chain / CodeSec

Malicious Visual Studio Extensions

A new attack vector targeting the Visual Studio Code extensions marketplace could be leveraged to upload rogue extensions masquerading as their legitimate counterparts with the goal of mounting supply chain attacks.

The technique “could act as an entry point for an attack on many organizations,” Aqua security researcher Ilay Goldman said in a report published last week.

VS Code extensions, curated via a marketplace made available by Microsoft, allow developers to add programming languages, debuggers, and tools to the VS Code source-code editor to augment their workflows.

“All extensions run with the privileges of the user that has opened the VSCode without any sandbox,” Goldman said, explaining the potential risks of using VS code extensions. “This means that the extension can install any program on your computer including ransomwares, wipers, and more.”

To that end, Aqua found that not only is it possible for a threat actor to impersonate a popular extension with small variations to the URL, the marketplace also allows the adversary to use the same name and extension publisher details, including the project repository information.

While the method doesn’t allow the number of installs and the number of stars to be replicated, the fact that there are no restrictions on the other identifying characteristics means it could be used to deceive developers.

The research also discovered that the verification badge assigned to authors could be trivially bypassed as the check mark only proves that the extension publisher is the actual owner of a domain.

In other words, a malicious actor could buy any domain, register it to get a verified check mark, and ultimately upload a trojanized extension with the same name as that of a legitimate one to the marketplace.

A proof-of-concept (PoC) extension masquerading as the Prettier code formatting utility racked up over 1,000 installations within 48 hours by developers across the world, Aqua said. It has since been taken down.

This is not the first time concerns have been raised about software supply chain threats in the VS Code extensions marketplace.

In May 2021, enterprise security…

Source…

Why researchers want you to wipe your old phone; dehumidifier recalls: CBC’s Marketplace Cheat Sheet

/in


Miss something this week? Don’t panic. CBC’s Marketplace rounds up the consumer and health news you need.

Want this in your inbox? Get the Marketplace newsletter every Friday.

Selling or recycling an old smartphone? Do a factory reset first

If you’re trying to get rid of your old electronics, it’s important that you make sure to fully wipe all of your personal data from the device.

But as computer security researchers from the University of Guelph recently discovered, many people who are selling or recycling electronics aren’t doing this properly. 

The team contacted 131 people who had advertised their device online for sale and found that although a majority had used a factory reset to clear their personal information from the device, more than one-third had not properly cleared their devices. And many had not deleted the data at all. Read more 

People who have old electronic devices they plan to sell or recycle should make sure they clear all their personal data properly by doing a factory reset, a University of Guelph researcher says. (David Donnelly/CBC)

How the COVID-19 crisis shaped our shopping habits

Nearly a year and a half into the pandemic, there’s a clearer picture of how the COVID-19 crisis has shaped our shopping habits — and how we respond when public health restrictions are eased.

Metro Inc.’s third-quarter earnings, reported Wednesday, largely mirrored results posted earlier this summer by competitors Empire Co. Ltd. and Loblaw Companies Ltd.

At the onset of the pandemic, all three saw sales soar as shoppers stockpiled everything prompting shortages of items such as flour and toilet paper. Many Canadians also opted for conventional full-service grocery stores rather than discount supermarkets and bought more items per visit as part of a one-stop-shop effort to reduce their grocery trips.

But the opposite trend is now emerging as the vaccine rollout continues. Read more

Louise Smyth, 97, who has travelled all over the world, was finally able to travel to the grocery store after receiving her second COVID-19 vaccine shot. ‘My family provided all my food supplies during the pandemic,’ she said. (AHS )

Ottawa promises vaccine passport for international…

Source…

Malware Patrol Data Offered Through Bandura Cyber Threat Intelligence Marketplace | Business

/in


ST. PETERSBURG, Fla.–(BUSINESS WIRE)–Jul 28, 2021–

Malware Patrol, the veteran threat intelligence company, announced today that they now offer data feeds through the Bandura Cyber Intelligence Marketplace.

This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20210728006051/en/

Cyber security teams around the world rely on Malware Patrol’s timely and accurate intelligence to expand their threat landscape visibility and to improve detection rates and response times. The company offers a variety of feeds related to the most prevalent attack types and vectors, including phishing, malware, ransomware, C2s, DGAs, cryptomining and DNS-over-HTTPS (DoH).

Bandura’s newly launched Cyber Intelligence Marketplace provides customers with access to high-value multi-source cyber intelligence data from leading intelligence providers. Bandura customers can easily discover, access, acquire, deploy, and enforce a curated collection of high-quality cyber intelligence data within minutes across their entire network and edge – in real time – without added latency.

“We’re excited to partner with Bandura Cyber because of their excellent reputation. We greatly appreciate that they are making it easier for their customers to diversify their threat intelligence sources via the Cyber Intelligence Marketplace. Those of us on the intelligence side of things know there’s an endless number of indicators of compromise out there, and that the best security posture comes from using multiple data sources,” said Malware Patrol CEO, Andre Correa.

Learn More

To learn more about the partnership between Bandura Cyber and Malware Patrol, attend a webinar with Bandura CRO Todd Weller and Malware Patrol Marketing & Sales Manager Leslie Dawn on Thursday, July 29 th, at 1 PM Eastern.

About Bandura Cyber

Bandura Cyber is an autonomous cyber intelligence and defense company that brings the power of cyber intelligence and cyber defense to global organizations. Our cloud-based platform combines cyber intelligence, automation, and network enforcement into a single solution that is easy to deploy and manage, filling in the gaps…

Source…