# Endpoint Security Platform for Extensions, Packages & MCPs | Koi > Markdown mirror of DialtoneApp's public top-site detail page for `koi.ai`. URL: https://dialtoneapp.com/top-sites/koi.ai/index.md Canonical HTML: https://dialtoneapp.com/top-sites/koi.ai ## Summary - Domain: `koi.ai` - Website: https://koi.ai - Description: ai readable | score 20 | purchase read only - Label: ai_readable - Payment surface: Not available - Purchase boundary: read_only - Control boundary: unknown - Rank: 217140 ## robots ~~~text User-agent: * Allow: / User-agent: ChatGPT-User User-agent: OAI-SearchBot User-agent: GPTBot Allow: / User-agent: PerplexityBot User-agent: Perplexity-User Allow: / User-agent: ClaudeBot Allow: / User-agent: bingbot Allow: / User-agent: msnbot Allow: / Sitemap: https://www.koi.ai/llms.txt Sitemap: https://www.koi.ai/sitemap.xml ~~~ ## llms ~~~text # www.koi.ai llms.txt > Koi gives security teams full visibility and control over extensions, packages, apps, and models—detect risks, enforce policy, and protect endpoints. - [Koi: Secure Every Software Install](https://www.koi.ai): Koi gives security teams full visibility and control over extensions, packages, apps, and models—detect risks, enforce policy, and protect endpoints. - [Koi: Get a Demo](https://www.koi.ai/get-a-demo) - [Koi's Story](https://www.koi.ai/about) - [Koi: Privacy Policy](https://www.koi.ai/privacy-policy) - [Koi: Cookie Policy](https://www.koi.ai/cookie-policy) - [Koi: Terms and Conditions](https://www.koi.ai/terms-and-conditions) - [Koi: Our Platform](https://www.koi.ai/platform) - [Koi: Discovery](https://www.koi.ai/discovery) - [Koi: Policies & Governance](https://www.koi.ai/policies) - [Koi: Requests & Approvals](https://www.koi.ai/approve) - [Koi: Chat with us](https://www.koi.ai/chat-with-us) - [Koi Blog | Latest on Endpoint Protection & Software Governance](https://www.koi.ai/blog): Discover the latest insights from Koi - covering endpoint protection, governance of third-party software, and strategies for evolving enterprise security. - [Koi: Wall of Koi](https://www.koi.ai/wall-of-koi): Discover the latest insights from Koi - covering endpoint protection, governance of third-party software, and strategies for evolving enterprise security. - [Join Our Pond | Koi](https://www.koi.ai/you-are-invited-to-join-koi) - [The MCP Backdoor: How Malware Slips In Through Developer Tools - Koi](https://www.koi.ai/webinar/mcp-backdoor): In this webinar we unpack the first malicious MCP server discovered in the wild and show how security teams can detect and mitigate this emerging class of risk before it spreads. - [Endpoint | Koi](https://www.koi.ai/endpoint) - [Wings | Koi](https://www.koi.ai/wings) - [Gateway | Koi](https://www.koi.ai/gateway) - [How We Hacked Multi-Billion Dollar Companies Using a Fake VSCode Extension](https://www.koi.ai/blog/1-6-how-we-hacked-multi-billion-dollar-companies-in-30-minutes-using-a-fake-vscode-extension): How we hacked multi-billion dollar companies in 30 minutes: a fake VSCode extension exposes the urgent need for better extension security. - [Exposing Malicious Extensions: Shocking Statistics from the VS Code Marketplace](https://www.koi.ai/blog/2-6-exposing-malicious-extensions-shocking-statistics-from-the-vs-code-marketplace): Exposing malicious extensions: shocking statistics from the VS Code Marketplace reveal hidden threats and major security risks for developers. - [Uncovering Design Flaws of Visual Studio Code Extensions](https://www.koi.ai/blog/3-6-a-letter-to-microsoft-uncovering-design-flaws-of-visual-studio-code-extensions): Uncovering design flaws in Visual Studio Code extensions, exposing security risks, architectural weaknesses, and real world impact - [Introducing ExtensionTotal: How to Assess Risk in VS Code Extensions](https://www.koi.ai/blog/4-6-introducing-extensiontotal-how-to-assess-risk-in-vs-code-extensions): Introducing ExtensionTotal, your complete solution for assessing risk in VS Code extensions, ensuring security, compliance, and productivity. - [4.3 Million Browsers Infected: Inside ShadyPanda's 7-Year Malware Campaign](https://www.koi.ai/blog/4-million-browsers-infected-inside-shadypanda-7-year-malware-campaign): ShadyPanda’s seven-year campaign infected 4.3 million browsers, spreading malware undetected and endangering user security worldwide. - [Breaking the Internet: The Aftermath Of Our Research](https://www.koi.ai/blog/5-6-breaking-the-internet-the-aftermath-of-our-research): Our research sent shockwaves through the web, discover the aftermath and new internet challenges revealed by our groundbreaking findings. - [CISO’s Guide to Using ExtensionTotal API for Your Organization](https://www.koi.ai/blog/6-6-uncover-hidden-risks-cisos-guide-to-using-extensiontotal-api-for-your-organization): Uncover hidden risks with the CISO’s guide to leveraging ExtensionTotal API—protect your organization with real-time extension analysis. - [A Month Of Malware In The Chrome Web Store](https://www.koi.ai/blog/a-month-of-malware-in-the-chrome-web-store): A Month of Malware in the Chrome Web Store reveals ongoing threats as malicious extensions compromise user security and privacy at scale. - [The Malicious VS Code Theme That Fooled Millions](https://www.koi.ai/blog/a-wolf-in-dark-mode-the-malicious-vs-code-theme-that-fooled-millions): A Wolf in Dark Mode: Millions were deceived by a malicious VS Code theme, turning a simple UI change into a hidden malware threat. - [Amazon’s AI Assistant Almost Nuked A Million Developer’s Production Environments](https://www.koi.ai/blog/amazons-ai-assistant-almost-nuked-a-million-developers-production-environments): Amazon’s AI assistant nearly destroyed a million developers’ production environments, revealing critical risks in automated cloud operations. - [Brew Hijack: Serving Malware Over Homebrew’s Core Tap](https://www.koi.ai/blog/brew-hijack-serving-malware-over-homebrews-core-tap): Brew Hijack exposed 50,000 users by delivering malware through Homebrew’s Core Tap, highlighting risks in popular package managers. - [Command Injection Flaw in Framelink Figma MCP Server Puts Nearly 1 Million Downloads at Risk](https://www.koi.ai/blog/command-injection-flaw-in-framelink-figma-mcp-server-puts-nearly-1-million-downloads-at-risk): A command injection flaw in Framelink Figma MCP Server exposes nearly 1 million downloads to risk, enabling attackers to execute malicious code. - [Embracing a New Domain Name: koi.ai](https://www.koi.ai/blog/embracing-a-new-domain-name-koi-ai): Our shift from koi.security to koi.ai marks the next chapter in our journey to redefine endpoint security for the AI-powered era. Find more here. - [FoxyWallet: 40+ Malicious Firefox Extensions Exposed](https://www.koi.ai/blog/foxywallet-40-malicious-firefox-extensions-exposed): FoxyWallet exposes over 40 malicious Firefox extensions, revealing a widespread campaign targeting users with data theft and hidden malware. - [Best ai agent for test generation](https://keploy.io): Generate unit, api, integration tests for backend using AI coding agent, keploy - [First Self-Propagating Worm Using Invisible Code Hits OpenVSX Marketplace](https://www.koi.ai/blog/glassworm-first-self-propagating-worm-using-invisible-code-hits-openvsx-marketplace): First self-propagating worm with invisible code targets the OpenVSX Marketplace, silently spreading across developer environments undetected. - [GlassWorm Goes Mac: Fresh Infrastructure, New Tricks](https://www.koi.ai/blog/glassworm-goes-mac-fresh-infrastructure-new-tricks) - [GlassWorm Goes Native: Same Infrastructure, Hardened Delivery](https://www.koi.ai/blog/glassworm-goes-native-same-infrastructure-hardened-delivery): GlassWorm upgrades its malware tactics by delivering native payloads with hardened infrastructure, increasing risks for enterprises. - [GlassWorm Returns: New Wave Strikes as We Expose Attacker Infrastructure](https://www.koi.ai/blog/glassworm-returns-new-wave-openvsx-malware-expose-attacker-infrastructure): GlassWorm launches a new wave of attacks with updated tactics, our analysis reveals fresh attacker infrastructure now exposed. - [Google and Microsoft Trusted Them. 2.3 Million Users Installed Them. They Were Malware.](https://www.koi.ai/blog/google-and-microsoft-trusted-them-2-3-million-users-installed-them-they-were-malware): Google and Microsoft trusted them, but 2.3 million users unknowingly installed malware, exposing data and systems to sophisticated attacks. - [GreedyBear: 650 Attack Tools, One Coordinated Campaign](https://www.koi.ai/blog/greedybear-650-attack-tools-one-coordinated-campaign): GreedyBear’s campaign deployed 650 attack tools in a single coordinated operation, targeting global systems and exposing massive security risks. - [Inside GhostPoster: How a PNG Icon Infected 50,000 Firefox Users](https://www.koi.ai/blog/inside-ghostposter-how-a-png-icon-infected-50-000-firefox-browser-users): Discover how GhostPoster used a malicious PNG icon to infect 50,000 Firefox users and the risks behind seemingly harmless downloads. - [Koi Raises $48M to Reinvent Endpoint Security for the Modern Software Stack](https://www.koi.ai/blog/koi-raises-48m-to-reinvent-endpoint-security-for-the-modern-software-stack): Koi secures $48M to revolutionize endpoint security, delivering innovative protection for the modern software stack and enterprises. - [How We Could’ve Taken Over Every Developer Using a VSCode Fork](https://www.koi.ai/blog/marketplace-takeover-how-we-couldve-taken-over-every-developer-using-a-vscode-fork-putting-millions-at-risk): Marketplace Takeover reveals how a VSCode fork could've compromised every developer, putting millions at risk of large-scale cyberattacks. - [MCP Malware Wave Continues: A Remote Shell in Disguise](https://www.koi.ai/blog/mcp-malware-wave-continues-a-remote-shell-in-backdoor): A remote shell disguised as legitimate software powers the ongoing MCP malware wave, posing stealthy risks to countless systems. - [Mining in Plain Sight: The VS Code Extension Cryptojacking Campaign](https://www.koi.ai/blog/mining-in-plain-sight-the-vs-code-extension-cryptojacking-campaign): Mining in Plain Sight exposes the VS Code extension cryptojacking campaign, silently hijacking developer machines for hidden cryptocurrency mining. - [NPM Package With 56K Downloads Caught Stealing WhatsApp Messages](https://www.koi.ai/blog/npm-package-with-56k-downloads-malware-stealing-whatsapp-messages) - [How 2.5 Billion Weekly Downloads Were Compromised in npm's Largest Supply Chain Attack](https://www.koi.ai/blog/npm-supply-chain-attack-package-poisoner): npm’s largest supply chain attack compromised 2.5 billion weekly downloads, exposing countless projects to risk and widespread vulnerabilities. - [PhantomRaven: NPM Malware Hidden in Invisible Dependencies](https://www.koi.ai/blog/phantomraven-npm-malware-hidden-in-invisible-dependencies): PhantomRaven NPM malware hides in invisible dependencies, silently compromising projects and putting entire software supply chains at risk. - [First Malicious MCP in the Wild: The Postmark Backdoor That's Stealing Your Emails](https://www.koi.ai/blog/postmark-mcp-npm-malicious-backdoor-email-theft): The first malicious MCP, named Postmark Backdoor, is stealing user emails by secretly intercepting and exfiltrating sensitive data. - [PromptJacking: The Critical RCEs in Claude Desktop That Turn Questions Into Exploits](https://www.koi.ai/blog/promptjacking-the-critical-rce-in-claude-desktop-that-turn-questions-into-exploits): Critical RCE flaws in Claude Desktop (“PromptJacking”) let attackers turn simple user questions into dangerous exploits, risking data security. - [Live Updates: Shai-Hulud, The Most Dangerous NPM Breach In History Affecting CrowdStrike and Hundreds of Popular Packages](https://www.koi.ai/blog/shai-hulud-npm-supply-chain-attack-crowdstrike-tinycolor): Live Updates: Shai-Hulud, The Most Dangerous NPM Breach In History Affecting CrowdStrike and Hundreds of Popular Packages - [SpyVPN: The Google-Featured VPN That Secretly Captures Your Screen](https://www.koi.ai/blog/spyvpn-the-vpn-that-secretly-captures-your-screen): SpyVPN, once featured by Google, secretly captures users’ screens, compromising privacy and exposing sensitive data to surveillance risks. - [The VS Code Malware That Captures Your Screen](https://www.koi.ai/blog/the-vs-code-malware-that-captures-your-screen): Malicious VS Code malware captures your screen activity, putting sensitive coding and personal information at serious risk for developers. - [TigerJack's Extensions Continue to Rob Developers Blind Across Different Marketplaces](https://www.koi.ai/blog/tiger-jack-malicious-vscode-extensions-stealing-code): TigerJack’s malicious extensions are still stealing from developers across multiple marketplaces, putting sensitive projects and data in danger. - [Trust Me, I’m Local: Chrome Extensions, MCP, and the Sandbox Escape](https://www.koi.ai/blog/trust-me-im-local-chrome-extensions-mcp-and-the-sandbox-escape): Trust Me, I’m Local reveals how Chrome extensions and MCP abuses enabled sandbox escapes, exposing users to major security vulnerabilities. - [Trust Wallet Hack: Inside the Code That Stole $7M on Christmas Eve](https://www.koi.ai/blog/trust-wallet-binance-compromised-inside-the-code-that-stole-7m-on-christmas-eve): Technical analysis of the Trust Wallet Chrome extension attack reveals what the news got wrong - and how a simple policy would have prevented $7M in losses. - [The NPM Malware That Tried to Gaslight Security Scanners](https://www.koi.ai/blog/two-years-17k-downloads-the-npm-malware-that-tried-to-gaslight-security-scanners): NPM malware with 17K downloads evaded scanners for two years, gaslighting security tools and risking developer supply chains. - [8 Million Users' AI Conversations Sold for Profit by "Privacy" Extensions](https://www.koi.ai/blog/urban-vpn-browser-extension-ai-conversations-data-collection): Privacy browser extensions misled users and sold 8 million AI chat logs, exposing sensitive conversations for profit without consent. - [VSCode Extension Trivia: Real or Cake?](https://www.koi.ai/blog/vscode-extension-trivia-real-or-cake): Is that VSCode extension trivia real or just a clever fake? Test your knowledge and spot the true tools from the imposters! - [When Claude Becomes a Cyber-Weapon: The AI Arms Race Has Begun](https://www.koi.ai/blog/when-anthropic-claude-becomes-a-cyber-weapon-the-ai-arms-race-has-begun): AI like Claude can be repurposed as a cyber-weapon, fueling an escalating arms race in digital security and AI-driven attacks. - [When Both Marketplaces Fall: The Cross-Platform Extension Malware Campaign](https://www.koi.ai/blog/when-both-marketplaces-fall-the-cross-platform-extension-malware-campaign): When both marketplaces fall, a cross-platform extension malware campaign exposes systemic trust failures across browsers globally! - [When Chrome Extensions Turn Against Us: The Cyberhaven Breach and Beyond](https://www.koi.ai/blog/when-chrome-extensions-turn-against-us-the-cyberhaven-breach-and-beyond): Chrome extensions turned malicious in the Cyberhaven breach, exposing user data and highlighting new threats lurking in trusted add-ons. - [WhiteCobra's Playbook Exposed](https://www.koi.ai/blog/whitecobra-vscode-cursor-extensions-malware): WhiteCobra’s critical mistake exposed its entire 24-extension campaign, targeting VS Code and Cursor users with stealthy persistent malware. - [Live Updates: GlassWorm, First Self-Propagating Worm Using Invisible Code Hits OpenVSX And VSCode Marketplaces](https://www.koi.ai/incident/live-updates-glassworm-first-self-propagating-worm-using-invisible-code-hits-openvsx-and-vscode-marketplaces): Live Updates: GlassWorm, First Self-Propagating Worm Using Invisible Code Hits OpenVSX And VSCode Marketplaces - [Live Updates: Sha1-Hulud, The Second Coming - Hundreds of NPM Packages Compromised](https://www.koi.ai/incident/live-updates-sha1-hulud-the-second-coming-hundred-npm-packages-compromised): A new wave of the Shai-Hulud malware is compromising hundreds of npm packages and destroying user home directories. Get live updates and mitigation steps. - [Live Updates: Shai-Hulud, The Most Dangerous NPM Breach In History Affecting CrowdStrike and Hundreds of Popular Packages](https://www.koi.ai/incident/shai-hulud-npm-supply-chain-attack-crowdstrike-tinycolor): Live Updates: Shai-Hulud, The Most Dangerous NPM Breach In History Affecting CrowdStrike and Hundreds of Popular Packages ~~~ ## llms-full Not found.