Malicious JetBrains Marketplace plugins harvest developers’ AI API keys

Source headline: Malicious JetBrains Marketplace plugins steal AI API keys from developers

Threat level High

Signal strength 75/100

Source confidence 1 source

Published 2 days ago

Intelligence Summary

Multiple malicious plugins have been found on the JetBrains Marketplace. The packages were designed to steal AI API keys entered or stored by developers. Victims are developers using affected plugins inside JetBrains IDEs. The stolen credentials can enable unauthorized use of AI services and expose related billing and data. Developers should review recently installed marketplace plugins and remove anything suspicious.

Recommended Action

Review affected assets, schedule urgent remediation, and monitor related indicators.

Topics

#jetbrains #marketplace #ai-api-keys #credential-theft #ide-extensions #supply-chain

Original reporting BleepingComputer Malicious JetBrains Marketplace plugins steal AI API keys from developers

Open original source