JETBRAINS MARKETPLACE PLAGUED BY 15 API KEY-STEALING PLUGINS

The malicious plugins targeted developers using popular JetBrains IDEs, including IntelliJ IDEA and PyCharm. They were engineered to extract API keys for services like OpenAI, Anthropic, and other AI platforms—credentials that could grant attackers access to expensive API services or sensitive project data. JetBrains removed the plugins after security researchers identified the threat. The incident highlights vulnerabilities in marketplace vetting processes and raises concerns about supply chain attacks targeting developer tools. Developers using JetBrains products should audit installed plugins and review API key exposure. Users should rotate compromised credentials immediately. JetBrains has not disclosed how long the plugins remained available or how many installations occurred before removal. This incident follows similar marketplace security incidents across platforms like VS Code and Chrome, underscoring the persistent risk of malicious extensions targeting developers.