Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Malicious VSCode extension in Cursor IDE led to $500K crypto theft
Malware and Vulnerabilities
July 14, 2025
bleepingcomputer
A malicious VSCode-compatible extension named Solidity Language distributed via the Cursor AI IDE's Open VSX registry led to the theft of $500,000 in cryptocurrency. The extension impersonated a legitimate Ethereum smart contract syntax highlighter.
Read More
VSCode Extension
Cursor IDE
Publisher
Previous
Why skipping security prompting on Grok’s newest model ...
Malware and Vulnerabilities
Next
Russia-linked group spoofing European journalists to sp ...
Threat Intel & Info Sharing
/https://cyware-ent.s3.amazonaws.com/public_image/cyberscoop61e8e066-9a09-46f1-80a0-cea8331c7a0a.png)
/https://cyware-ent.s3.amazonaws.com/public_image/therecord43a02b76-64bc-4537-bfbb-d91511777d1b.jpg)
