TigerJack's malicious VS Code extensions, like C++ Playground & HTTP Format, steal source code, mine cryptocurrency, & plant backdoors. Learn how this ongoing supply chain attack threatens developers & how to protect your environment.

Continue reading
A threat actor known as TigerJack has been systematically infiltrating developer marketplaces with malicious Visual Studio Code (VS Code) extensions, creating a sophisticated attack infrastructure that steals source code, hijacks system resources for cryptocurrency mining, and establishes remote backdoors for complete system control.
This ongoing campaign highlights a critical and escalating threat to the software supply chain, leveraging the trust developers place in popular IDE marketplaces.
TigerJack operates a coordinated multi-account campaign across at least three publisher identities (`ab-498`, `498`, and `498-00`), deploying at least 11 malicious extensions.
The most successful ones, "C++ Playground" and "HTTP Format," infected over 17,000 developers before being removed from the Microsoft Marketplace, though they remain available on the open-source OpenVSX registry (used by Cursor, Windsurf, and other VS Code-compatible IDEs).
The attack employs a "Trojan Horse" strategy: the extensions function as advertised to avoid suspicion while malicious code runs invisibly in the background.
| Extension Name | Primary Malicious Function | Key Technique |
|---|---|---|
| C++ Playground | Source code theft | Exfiltrates C++ code via document change listener |
| HTTP Format | Cryptocurrency mining | Runs CoinIMP miner with hardcoded credentials |
| cppplayground, httpformat, pythonformat | Remote Code Execution (Backdoor) | Fetches & executes remote JavaScript payloads every 20 minutes |
TigerJack demonstrates high persistence. As recently as September 2025, the actor launched a coordinated republication campaign, repackaging the same malicious code under the new "498-00" publisher account. This occurred even as the investigation was ongoing, proving the operation's sophistication.
This campaign is part of a broader trend of attacks targeting developers through their tools. Recent incidents include a malicious dependency in the "Material Theme" that impacted nearly 4 million users, a cryptojacking campaign impersonating popular tools like "Prettier" and "Discord Rich Presence", and a supply chain attack on the "Ethcode" extension via a malicious pull request.
For individual developers and organizations, vigilance and proactive security measures are critical:
The TigerJack campaign serves as a stark reminder that the very tools intended to boost productivity can become potent weapons in the hands of threat actors. As the attack vector evolves, a shift from blind trust to verified security becomes not just prudent, but essential for safeguarding intellectual property and infrastructure.

148 malicious npm packages masquerading as student proxy and school Wi-Fi bypass tools. Rather than compromising developers during installation