floofloof@lemmy.ca to Programming@programming.devEnglish · 9 months agoMalicious VSCode extensions with millions of installs discoveredwww.bleepingcomputer.comexternal-linkmessage-square53fedilinkarrow-up1253arrow-down114cross-posted to: cybersecurity@sh.itjust.worksprogramming@beehaw.org
arrow-up1239arrow-down1external-linkMalicious VSCode extensions with millions of installs discoveredwww.bleepingcomputer.comfloofloof@lemmy.ca to Programming@programming.devEnglish · 9 months agomessage-square53fedilinkcross-posted to: cybersecurity@sh.itjust.worksprogramming@beehaw.org
minus-square30p87@feddit.delinkfedilinkarrow-up16arrow-down3·9 months ago But why can a theme make web requests?! Why can a Word or Excel file execute shell code? Why does M$ SQL Server have xp_cmdshell? Because we live in a broken world and nothing matters. Because devs chose to live in this part of the world, dictated by M$ and other large companies, who just don’t care.
Why can a Word or Excel file execute shell code? Why does M$ SQL Server have xp_cmdshell?
Because devs chose to live in this part of the world, dictated by M$ and other large companies, who just don’t care.