Supply Chain Attack Targeting Linux and MAC
Posted4 months agoActive4 months ago
kaspersky.co.ukTechstory
heatednegative
Debate
40/100
Supply Chain AttackMalwareCybersecurity
Key topics
Supply Chain Attack
Malware
Cybersecurity
A supply chain attack targeting Linux and Mac users through a malicious VS Code extension, with one user sharing their personal experience of being affected.
Snapshot generated from the HN discussion
Discussion Activity
Light discussionFirst comment
6m
Peak period
2
0-1h
Avg / period
1.7
Key moments
- 01Story posted
Aug 31, 2025 at 12:16 AM EDT
4 months ago
Step 01 - 02First comment
Aug 31, 2025 at 12:22 AM EDT
6m after posting
Step 02 - 03Peak activity
2 comments in 0-1h
Hottest window of the conversation
Step 03 - 04Latest activity
Aug 31, 2025 at 12:58 PM EDT
4 months ago
Step 04
Generating AI Summary...
Analyzing up to 500 comments to identify key contributors and discussion patterns
ID: 45080335Type: storyLast synced: 11/17/2025, 8:02:25 PM
Want the full context?
Jump to the original sources
Read the primary article or dive into the live Hacker News thread when you're ready.
My NX Console EXTENSION in VS Code was updated after the supply chain attack was initialized by the malicious actor.
The symptom, besides the email from GitSec, was all my terminals initialized prompted for sudo pw, because ~/.bashrc had sudo shutdown appended.