A fake VS Code extension posing as a Moltbot AI assistant installed ScreenConnect malware, giving attackers persistent remote ...

An official Model Context Protocol extension Anthropic's Claude can now present the interfaces of other applications within ...

Two VSCode extensions are harvesting sensitive data and sending it to China.

Security researchers found two AI-branded VS Code extensions with 1.5M installs that covertly send source code and files to ...

VS Code forks like Cursor, Windsurf, and Google Antigravity may share a common foundation, but hands-on testing shows they ...

Marketplace that were collectively installed 1.5 million times, exfiltrate developer data to China-based servers.

Another wave of malicious browser extensions capable of tracking user activity have been found across Chrome, Firefox, and ...

Threat actors behind the campaign are abusing Microsoft Visual Studio Code’s trusted workflows to execute and persist ...

A campaign involving 19 Visual Studio (VS) Code extensions that embed malware inside their dependency folders has been uncovered by cybersecurity researchers. Active since February 2025 but identified ...

The coordinated campaign abuses Visual Studio Code and OpenVSX extensions to steal code, mine cryptocurrency, and maintain remote control, all while posing as legitimate developer tools. In a new ...

Editor's take: Microsoft has long been the financial lifeline of OpenAI, but its growing reliance on Anthropic's models suggests that loyalty may be giving way to performance. By favoring Anthropic in ...

TL;DR: Get lifetime access to 15 premium coding courses for $49.97, and Microsoft Visual Studio Professional as an added bonus for a limited time (MSRP $1,999). Learning to code takes more than just ...