Two malicious extensions were discovered on Microsoft's Visual Studio Code Marketplace that infect developers' machines with information-stealing malware. The malicious extensions can take screenshots, steal credentials, and hijack browser sessions. This represents a supply chain attack targeting the developer community through compromised extensions in the official Microsoft marketplace. The attack specifically targets developers who are likely to have access to sensitive code repositories and systems. The malware focuses on information theft capabilities including credential harvesting and session hijacking.