Security News Fake Solidity VSCode extension on Open VSX backdoors developers BleepingComputer Daniel Bender 03 Nov 2025 A remote access trojan dubbed SleepyDuck, and disguised as the well-known Solidity extension in the Open VSX open-source registry, uses an Ethereum smart contract to establish a communication channel with the attacker.
