Aikido Security

🔐 At least 15 malicious plugins on the JetBrains Marketplace were designed to steal AI API keys from developers and were installed close to 70,000 times. ⚠️ The plugins functioned as advertised but secretly exfiltrated API keys entered into settings to a hardcoded server over HTTP, and one analyzed plugin remained available at the time of writing. ➡️ https://lnkd.in/gCs3tz4t #cybersecurity #JetBrains #AIAssistants #APIKeys

Malicious IDE extensions are usually a VS Code story. This one broke the pattern, and it may be the first coordinated malware campaign of its scale to reach the JetBrains Marketplace. We found a set of 15 plugins, published under 7 vendor accounts, that all share the same attack mechanism and underlying code. They pose as AI coding assistants built on DeepSeek, and they work as promised. But the instant you paste your AI provider API key into settings, they send it to an attacker's server in plaintext. There's even a paid tier. Pay a small fee, and the server gives you a working key back, quite possibly one lifted from another victim. JetBrains usually sees far less of this than VS Code, thanks to manual review and mandatory plugin signing, which is exactly why a campaign this organized is interesting. If you run JetBrains IDEs across a team, now's a good moment to audit installed plugins and rotate any AI provider keys that touched them. Aikido surfaces this one as a critical malware issue if you'd rather automate the check. Aikido's Device Protection also protects against IDE plugin malware, so you can keep every developer's workstation safe. Full write-up in the comments.

AI Engineer World’s Fair is coming up. Madeline, Jesse, and Ryan will be in San Francisco from June 29 - July 2. Find them at booth #S17. 🗓️ Also on the calendar: - June 30: AI Leaders Dinner with Daytona, Infinum, Coder, and Arize AI: https://lnkd.in/exA3N8Ux - July 1: AI Engineer World’s Fair Afterparty with Tailscale, Docker, Inc, Inngest, and Rootly: https://lnkd.in/eTmXKjHv

Tomorrow, we’re at VivaTech. Catch our Madeline on stage: - June 18 at 4:30 PM on the Purple Stage for “Cyber Self-Defense: Why We Need Software That Protects Itself.” - June 19 at 11:30 AM at Founders Arena for “From Pre-Seed to Series A: How to Scale Your Go-To-Market Strategy.” You can also find the Aikido team at the FIT Partner Stand 3H37-002, VivaTech Corner 3B21-002, and Top 100 Corner 3H46-002 💜🍜

I can no longer send security disclosures to a significant portion of the companies that are on my to-do list. Why? Because they all use HackerOne. My submissions so far get closed as informative, even though most fix the issue I report quite quickly. This makes my signal so low that I can no longer submit disclosures. These companies have no other way to contact their security team. I'm now stuck with no way to responsibly disclose my findings to many companies. This is pretty messed up. Not sure what to do from here. This sucks.

Developers of Belgium! Hear ye hear ye! Aikido Security is looking for 11 full stack developers 🚀 So many cool features and products to work on: Pentest, AI CodeQuality, Malware feeds, ... 🥵 Reach out if you'd like to learn more, or apply with the link below. https://lnkd.in/ezqq9AFR

There have been lots of stories and myths around Fable 5. Anthropic released it last week. By the end of the week the US government had moved to suspend it over 'national security concerns' and Anthropic pulled it from consumers. Everyone is trying to fit Mythos into the "AI hacker" box. But vulnerability discovery is maybe 20% of what security teams actually need to fix. The future is probably less "AI apocalypse" and more defensive scans, remediation, exposure management, and cleanup. Mike wrote more: https://lnkd.in/eXgW_K5C

I really enjoyed my first Founders Forum Group event last week, where I had the opportunity to meet with many of Europe’s most innovative founders, operators and investors. Europe and the UK have an incredibly vibrant start-up ecosystem - from Madeline Lawrence founder of Aikido, to Guy Podjarny, founder of Tessl, Walter Goodwin, founder of Fractile, and Chad Edwards of CuspAI, these are the teams building the next generation of companies with AI. Start-ups have always been part of OpenAI’s DNA and are critical to our mission. I truly believe the next phase of AI will be built by a broad ecosystem, with founders, start-ups and developers finding new ways to make intelligence useful, practical and accessible. So many of the founders I met are building with agentic AI to expand what people and businesses are able to do: from legal services and cybersecurity, to tools that make it possible for anyone to build. These companies are not only making existing markets more efficient; they are creating new markets, new industries and new kinds of work. That’s why we want OpenAI to be a strong partner to start-ups and developers: providing broad access to the models, tools and infrastructure that help others build quickly and efficiently, on top of and alongside us. Thank you John Micklethwait for the great onstage conversation, and to Brent Hoberman for bringing so many interesting people together - I look forward to the next one, hopefully with a little less rain!

Heading to VivaTech? On June 18, we’re hosting the Future of Development Dinner in Paris with Lovable and Mistral. A private dinner with builders and security leaders. RSVP in comments 👇