A recent report reveals that cybercriminals are weaponizing the popular VS Code editor to spread malicious code. The new tricks let attackers slip past defenses by disguising threats as harmless extensions.
https://www.jamf.com/blog/threat-actors-expand-abuse-of-visual-studio-code/