EN, GBHackers Security | #1 Globally Trusted Cyber Security News Platform

Cyberattackers Exploit OpenVSX Aqua Trivy with Malicious AI Prompts to Hijack Coding Tools

2026-03-03 08:03

Threat actors compromised the Aqua Trivy VS Code extension on OpenVSX by publishing malicious versions 1.8.12 and 1.8.13 on February 27-28, 2026. These versions injected prompts to hijack local AI coding tools for system reconnaissance and data exfiltration. Aqua Trivy is a popular open-source vulnerability scanner with a VS Code extension, hosted on OpenVSX under […]

The post Cyberattackers Exploit OpenVSX Aqua Trivy with Malicious AI Prompts to Hijack Coding Tools appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

This article has been indexed from GBHackers Security | #1 Globally Trusted Cyber Security News Platform

Read the original article:

Cyberattackers Exploit OpenVSX Aqua Trivy with Malicious AI Prompts to Hijack Coding Tools

← Angular i18n Flaw Lets Hackers Execute Malicious Code via Critical XSS Vulnerability

Android Security Update Fixes 129 Flaws and Tackles Actively Exploited Zero-Day Flaw →

Cyberattackers Exploit OpenVSX Aqua Trivy with Malicious AI Prompts to Hijack Coding Tools

Read the original article:

Like this:

Related

Read the original article:

Share this:

Like this:

Related

Post navigation