A sophisticated supply chain attack targeting Amazon's Q extension for Visual Studio Code successfully embedded malicious system prompts designed to wipe users' local files and AWS cloud resources, exposing critical vulnerabilities in AI development tool security.
The compromised version 1.84.0 briefly contained destructive commands...