Compromised Nx Console Extension Targets Developers with Credential Stealer

Cybersecurity researchers identified a compromised version of the Nx Console extension (rwl.angular-console, version 18.95.0) published to the Microsoft Visual Studio Code (VS Code) Marketplace. The extension, a user interface and plugin for VS Code, Cursor, and JetBrains editors, has over 2.2 million installations. The malicious version targeted developers by deploying a credential stealer, though specific technical details of the payload were not disclosed. No CVE ID or exact date of compromise was mentioned in the report. The incident highlights risks associated with third-party extensions in widely used development environments.