A detailed breakdown of a sophisticated malware attack disguised as a technical assignment sent via LinkedIn. The attack exploits VSCode's tasks.json to automatically execute remote code when a project folder is opened, without requiring any user interaction beyond trusting the workspace. The analysis walks through multiple
•7m read time• From coinsbench.com
Table of contents
Get Evgenii ’s stories in your inboxBeaverTail ( https://malpedia.caad.fkie.fraunhofer.de/details/js.beavertail )Sort: