Slow Fog CISO: Beware of the rampant supply chain attacks targeting developers and suspicious VSCode plugins
Slow Fog Technology's Chief Information Security Officer 23pds warns developers via a post forwarded from X platform user @mrdotparasyte to remain vigilant when installing third-party plugins or packages. Currently, there is a suspicious VSCode plugin named JuanFranBlanco.solidit-vscode, and the spelling error of 'solidit' in the plugin Identifier is obvious. The plugin has been around for two to three days, and it is still unclear how many developers have inadvertently 'fallen victim'. Currently, the phenomenon of supply chain attacks targeting developers is becoming increasingly rampant, especially for unofficially reviewed VSCode plugins, npm packages, etc., which have become major hotspots for such attacks.
2025 Binance latest commission refund method; register for Binance China through the following link (no need for VPN to enjoy super commission fee refunds + BNB fee discounts = 40% off: please open in a browser; if already registered, please log in and bind the invitation code to receive transaction commission refunds, and can also be shared with friends and family for mutual benefit. High trading volume can save you the cost of a car each year)
https://www.marketwebb.info/join?ref=GGP82A88
Binance International registration (requires VPN, registration login will show where to input the invitation code for binding)
https://www.binance.com/join?ref=GGP82A88
I do not take orders, I am not a master of eternal profit, I only wholeheartedly help you save on fees, with benefits and no harm. Please follow, like, reward, and share this post. I wish you to earn 5 million dollars
