15 JetBrains plugins just spent 8 months stealing your AI API keys. 70,000 developers are compromised.

15 malicious plugins on the JetBrains Marketplace just got caught stealing AI API keys from developer machines.

70,000 installs over 8 months.

The plugins actually worked. Code reviews. Git commit messages. Unit tests. All functional. All stealing your OpenAI, DeepSeek, and SiliconFlow credentials in the background.

Here is the kill chain.

Developer installs plugin. Pastes API key into settings. Clicks "Apply." Plugin hooks into the save function. Key transmits in plaintext over unencrypted HTTP to a hardcoded server at 39.107.60.51. No prompts. No warnings. Silent.

Seven seller accounts. Fake five-star reviews. First plugin appeared October 2025. Latest published June 10, 2026. JetBrains just deployed a remote kill-switch and banned the accounts.

The worst part: researchers at Aikido think the operators were reselling stolen keys to paying users. Steal from free users. Rent to paying customers. Self-funding supply chain attack.

Audit your developer machines today. Settings > Plugins > Installed. Remove anything unverified. Rotate every AI API key that touched a JetBrains IDE. Block 39.107.60.51 at your firewall.

Your CI/CD pipeline is only as secure as the plugins on your developers' laptops.