Security Alert: 15 Rogue JetBrains Plugins Exposed for Stealing DeepSeek and OpenAI API Credentials
deepseek openai
| Source: Mastodon | Original article
Hackers are using fake AI plugins to steal API keys. Malicious JetBrains plugins have been downloaded nearly 70K times.
Hackers have been using fake AI coding assistants on the JetBrains Marketplace to steal API keys from developers, including those for DeepSeek and OpenAI. At least 15 malicious plugins, downloaded over 70,000 times, have been caught exfiltrating these keys while posing as legitimate tools. This coordinated campaign, which lasted for eight months, used fake reviews to lure developers into installing the plugins.
This incident matters because it highlights the vulnerability of developer tools to supply chain attacks. The fact that these plugins were able to steal sensitive information, including API keys, raises concerns about the security of the JetBrains Marketplace and the potential for similar attacks in the future.
As the investigation into this incident continues, developers should be cautious when installing plugins from the JetBrains Marketplace, and monitor their API keys for any suspicious activity. It remains to be seen how JetBrains will respond to this incident and what measures they will take to prevent similar attacks in the future.
Sources
Back to AIPULSEN