top of page
perceptive_background_267k.jpg

Malicious IoliteLabs VSCode Extensions Target Solidity Developers on Windows, macOS, and Linux with Backdoor

Published:

27 March 2026 at 20:41:51

Alert date:

27 March 2026 at 21:04:38

Source:

stepsecurity.io

Click to open the original link from this advisory

Supply Chain & Dependencies, Ransomware & Malware, Security Tools

Cybercriminals deployed malicious Visual Studio Code extensions under the IoliteLabs brand targeting Solidity developers across Windows, macOS, and Linux platforms. These extensions contain backdoor functionality designed to compromise developer environments. The attack represents a supply chain threat specifically targeting blockchain and smart contract developers. The malicious extensions were distributed through VSCode marketplace channels. This campaign demonstrates sophisticated targeting of cryptocurrency and DeFi development communities through developer tool compromise.

Technical details

Mitigation steps:

Affected products:

Visual Studio Code
VSCode Extensions

Related links:

https://www.stepsecurity.io/blog/malicious-iolitelabs-vscode-extensions-target-solidity-developers-on-windows-macos-and-linux-with-backdoor

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page