Cybersecurity researchers have flagged a malicious Visual Studio Code (VS Code) extension with basic ransomware capabilities that appears to be created with the help of artificial intelligence – in other words, vibe-coded. Secure Annex researcher John Tuckner, who flagged the extension "susvsex," said it does not attempt to hide its malicious functionality. The extension was uploaded on
![]()
source https://thehackernews.com/2025/11/vibe-coded-malicious-vs-code-extension.html
source https://thehackernews.com/2025/11/vibe-coded-malicious-vs-code-extension.html