"The community was first notified of this campaign ... Two of the malicious domains chosen to appear legitimate are 'microsoft-visualstudiocode[.]com' and 'captchacdn[.]com,' while others used ...