New research has uncovered that publishers of over 100 Visual Studio Code (VS Code) extensions leaked access tokens that could be exploited by bad actors to update the extensions, posing a critical software supply chain risk.
“A leaked VSCode Marketplace or Open VSX PAT [personal access token] allows an attacker to directly distribute a malicious extension update across the entire install base,”
Dr. Oz Says the Medicaid Program is Complicit in ‘Legalized Money Laundering’
CMS Administrator Dr. Mehmet Oz said that Medicaid’s rapid spending growth is unsustainable and criticized state financing tactics that let providers and governments “game” the
