Utopia Tech
SecurityAI-assisted1 min read

Malicious JetBrains Plugins Steal AI API Keys as Chrome Extensions Capture Chatbot Chats

A coordinated malware campaign has infiltrated the JetBrains Marketplace with 15 malicious plugins disguised as AI coding assistants. These plugins, which claim to leverage DeepSeek and other large language models for development tasks, are designed to steal AI provider API keys from developers. The threat extends to Chrome extensions that capture chatbot conversations, representing a significant

UT

Utopia Tech

June 17, 2026 · 1 min read

Share

Cybersecurity researchers have flagged a "coordinated malware campaign" on the JetBrains Marketplace that has published no less than 15 malicious plugins capable of exfiltrating artificial intelligence (AI) provider keys. "Every plugin poses as an AI coding assistant built on DeepSeek and other large language models, offering chat, commit messages, code review, bug finding, and unit tests,"

Originally published at thehackernews.com

#API-security#Cybersecurity#Developer-Tools#Malware#Supply-Chain-Security#Vulnerabilities
Share
▸ Want a deeper look?

Talk to an architect about applying this to your stack.

60-minute technical evaluation, no obligation. We'll map the ideas in this article to your environment.

Schedule the call
▸ Continue reading

More from the journal

INC Ransomware Thrives by Mastering the Basics
Security

INC Ransomware Thrives by Mastering the Basics

1 min read

Microsoft Confirms RoguePlanet Defender Zero-Day, Says Patch is in Development
Security

Microsoft Confirms RoguePlanet Defender Zero-Day, Says Patch is in Development

1 min read

Crypto Clipper Campaign Abuses Fake Reviews, AI Narrators, and VirusTotal Comments
Security

Crypto Clipper Campaign Abuses Fake Reviews, AI Narrators, and VirusTotal Comments

1 min read

All posts
Skip to main content