AI-Driven Ransomware Threats Emerge in VS Code Extensions
A malicious VS Code extension named susvsex, created with AI assistance and advertising ransomware capabilities, was published on Microsoft's marketplace. Despite being reported for its malicious functions, Microsoft did not remove it. The extension encrypts files and exfiltrates data to a remote server, and uses hardcoded credentials to communicate with a command-and-control server. The incident raises concerns about vetting processes for extensions and the potential misuse of AI in malicious software development.