Security News Researchers Find Malicious VS Code, Go, npm, and Rust Packages Stealing Developer Data TheHackerNews Daniel Bender 09 Dec 2025 Researchers found malicious VS Code extensions and Go, npm, and Rust packages stealing developer data via hidden payloads and exfiltration.
