A sophisticated cyberattack has been discovered, turning Visual Studio Code (VS Code) into a remote access tool. This attack involves Python-based malware that infiltrates systems through legitimate VS Code extensions. One such extension, with 1.7 million downloads, has been identified as a vector for this malware. Additionally, a new malware named 'Perfctl' is targeting Linux servers, running cryptocurrency miners and engaging in proxyjacking. Perfctl exploits a Polkit vulnerability (CVE-2021-4043) for privilege escalation and employs a rootkit to evade detection. These incidents highlight the increasing sophistication of cyber threats and the importance of vigilance in cybersecurity practices. There is also a warning about a possible honeypot in VSCode for Ethereum.