SECURITYTHE HACKER NEWS
Malicious JetBrains Plugins Steal AI API Keys as Chrome Extensions Capture Chatbot Chats
Cybersecurity researchers identified a coordinated malware campaign on the JetBrains Marketplace involving 15 malicious plugins that steal AI provider API keys. These plugins masquerade as AI coding assistants using models like DeepSeek, offering features such as code reviews and chat while exfiltrating sensitive data.
Mentioned
Related Signal
Adjacent reporting
- WordPress plugin suite hacked to push malware to thousands of sites
- Someone planted backdoors in dozens of WordPress plugins used in thousands of websites
- Rust-Written IronWorm Hits NPM Supply Chain
- ‘TrapDoor’ malware targets crypto dev tools in supply chain attack
- Showboat Linux Malware Hits Middle East Telecom with SOCKS5 Proxy Backdoor