Security researchers found two AI-branded VS Code extensions with 1.5M installs that covertly send source code and files to ...

Microsoft has released the Copilot Studio extension for Visual Studio Code to general availability, enabling teams to build, ...

North Korean hackers abuse Visual Studio Code task files in fake job projects to deploy backdoors, spyware, and crypto miners ...

Once trust is granted to the repository's author, a malicious app executes arbitrary commands on the victim's system with no ...

VS Code forks are diverging rapidly, not just in features, but in how they structure AI-assisted development workflows. Cursor emphasizes speed and visual polish, Windsurf leans toward dynamic ...

Threat actors behind the campaign are abusing Microsoft Visual Studio Code’s trusted workflows to execute and persist ...

A spear-phishing campaign tied to the Democratic People's Republic of Korea (DPRK) uses trusted Microsoft infrastructure to ...

Microsoft’s new winapp CLI simplifies Windows app development with one-command setup, faster testing, and easier packaging.

North Korean hackers target macOS developers with malware hidden in Visual Studio Code task configuration files.

The contagious interview campaign continues.

This week, DOGE posted sensitive data on an outside server. A phishing attack affected 750,000 Canadians. A hacktivism ...