Thehackernews
Supply Chain Attack Targets Microsoft Entra ID via Compromised Nx Console Extension
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
On May 18, 2026, a compromised version of the Nx Console VS Code extension was uploaded to the Visual Studio Code Marketplace, targeting developer credentials and cloud infrastructure tokens. This attack exploited vulnerabilities in the Nx ecosystem, marking the second supply chain incident in less than a year. Developers using Nx Console 18.95.0 are particularly at risk, with potential data exfiltration from Microsoft 365 and Azure environments. The attack is believed to have affected thousands of machines, emphasizing the need for heightened security measures in software supply chains. As of now, the incident is under investigation, and users are advised to monitor their systems for unusual activity.
Key Points: • A compromised Nx Console extension was published on May 18, 2026. • The attack targets developer credentials and cloud infrastructure tokens. • This incident marks the second supply chain attack against the Nx ecosystem in under a year.