A malicious version of the popular NX Console extension, version 18.95.0, was released targeting Visual Studio Code developers with credential-stealing malware. The compromised extension, which is used for development workflow management, represents a supply chain attack aimed at harvesting sensitive information from unsuspecting developers who installed the tainted update. This incident highlights the growing threat to developer tools and the software supply chain, where attackers target widely-used extensions to gain access to credentials and potentially compromise multiple downstream projects.