- cross-posted to:
- [email protected]
- [email protected]
- [email protected]
- netsec
- secops
- cross-posted to:
- [email protected]
- [email protected]
- [email protected]
- netsec
- secops
MSFT was responsible of a generation of non-educated users, half-assed sysadmin, what could go wrong, now ?
maybe your are not concerned with your 64GB laptop from which 60GB are used for entreprise spyware/antivirus hem, protective measure. :)
Eli5
VS Code has an optional feature that can allow remote access, which could be [used/abused] to [access/breach] otherwise secure networks. Because the executable is signed by Microsoft, it won’t be flagged as malicious by antivirus/malware scanners even though it could easily be used as such. The article shows the steps the author attempted to detect and block this tunnel functionality, with limited success.