Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Cyble Researchers Uncover Sophisticated Attack Using VSCode for Remote Access
Threat Intel & Info Sharing
October 02, 2024
The Cyber Express
Cyble researchers have uncovered a sophisticated campaign that starts with a suspicious .LNK file and uses VSCode to establish persistence and remote access – and installs the VSCode CLI if VSCode isn’t found on the victim machine.
Read More
Cyble
.LNK file
Visual Studio Code
VSCode
Command Line Interface (CLI)
Publisher
Previous
Iran-linked Threat Group Handala Actively Targets Israe ...
Threat Actors
Next
Zimbra RCE Vuln Under Attack Needs Immediate Patching
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/iStock_000029689518_Small.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/f8a2_shutterstock_78828187.jpeg)
