Skip to content
The Nexus
SECURITYJun 17 · 09:38 UTCTHE HACKER NEWS[email protected] (The Hacker News)

Malicious JetBrains Plugins Steal AI API Keys as Chrome Extensions Capture Chatbot Chats

Cybersecurity researchers identified a coordinated malware campaign on the JetBrains Marketplace involving 15 malicious plugins that steal AI provider API keys. These plugins masquerade as AI coding assistants using models like DeepSeek, offering features such as code reviews and chat while exfiltrating sensitive data.

Nexus surfaces and summarizes. The full story lives at the source.

Mentioned
Spot something wrong with this article?Report a problem →
Forward this
Related Signal

Adjacent reporting