A published VS Code extension didn't hide the fact that it encrypts and exfiltrates data and also failed to remove obvious signs it was AI-generated.

A suspicious Visual Studio Code extension with file-encrypting and data-stealing behavior successfully bypassed marketplace ...

GlassWorm, a self-propagating VS Code malware first found in the Open VSX marketplace, continues to infect developer devices ...

Developers will have to contend with a dormant turned active malicious code on Visual Studio Code (VS Code) extensions, which ...

Uno Platform today announced Uno Platform Studio 2.0, a major AI-based update to its cross-platform .NET coding solution.

Today is Microsoft' 2025 Patch Tuesday, which includes security updates for 63 flaws, including one actively exploited ...

Also of importance are a Kerberos vulnerability in Active Directory, a Visual Studio Copilot extension, and a Microsoft ...

Microsoft’s November Visual Studio roadmap highlights new AI agents, GPT-5 Codex integration, and improved MCP governance.

The GlassWorm malware campaign, which impacted the OpenVSX and Visual Studio Code marketplaces last month, has returned with ...

Cybersecurity researchers have flagged a malicious Visual Studio Code (VS Code) extension with basic ransomware capabilities ...

Microsoft Patch Tuesday updates address more than 60 vulnerabilities, including a Windows kernel zero-day exploited in ...

Weeks after being declared eradicated, GlassWorm is again infesting open source extensions using the same invisible Unicode ...