Staff Security Researcher @datadoghq | DEF CON/Black Hat USA main stage speaker | he/him | OSCP OSWE | I turned hacking AWS into a career | Tweets are my own | Created https://hackingthe.cloud
Nick Frichette
Loading...
@fwdcloudsec.org has been incredibly inspiring. So many talented researchers, so much great work, and the energy here made me want to go chase down some AWS ideas I've been sitting on.
Love this community.
I’m so excited to share what we’ve been working on: AI Guard for Coding Agents. Months ago Datadog Security Research, saw the risk posed to coding agents like Claude, Cursor, Codex and more. We knew we needed a solution to help secure these important agentic tools.
Looks like the latest version of Codex has a required review/trust system for hooks. This is a great way to protect developers as threat actors have started to abuse hooks more and more.
Interested in attending @fwdcloudsec.org but bummed you didn’t get a ticket? There are a few for sale from people who couldn’t make it last minute. Check out the Cloud Security Forum Slack to get yours and attend the best cloud security conference on earth.
It monitors VS Code and Cursor extension behavior at runtime and blocks suspicious activity from malicious or compromised extensions.
Good morning fwd:cloudsec!! The best cloud security conference on earth is happening today and tomorrow! Didn’t manage to get a ticket? Join remotely! All talks are live-streamed to the official YouTube channel.
A malicious VS Code extension was reportedly enough to compromise a GitHub employee device and expose internal repositories. That should make every security team ask: What’s running inside our developers’ IDEs?
github.com/DataDog/IDE-...
Fast forward to today and we’re seeing threat actors distribute malicious skills, abuse hooks, and more. To help protect organizations from these threats we’re releasing AI Guard for Coding Agents!
Sign up for the preview now and see the future of securing AI.
www.datadoghq.com/product-prev...
Malicious skills are evolving, and attackers are finding ways to execute them before model-level defenses even activate.
In the first post of our new series, I’ll show you how dynamic context in coding agents can introduce new supply chain risks:
securitylabs.datadoghq.com/articles/mal...
VS Code extensions have broad access, update frequently, and often run with more trust than they deserve. Datadog Security Research has been tracking this attack surface for a while, and IDE Shepherd is one way we’re helping teams respond.
