One such event occurred in December 2024, making it worthy of a ranking for 2025. The hackers behind the campaign pocketed as ...

A new malware campaign is A/B testing delivery effectiveness on software developers using malicious VS Code extensions. In a campaign tracked by Koi, a threat actor published two malicious VS Code ...

In December 2025, the GlassWorm supply chain malware campaign emerged again, affecting both the Microsoft Visual Studio Marketplace and Open VSX platforms. This episode involved 24 extensions posing ...

Microsoft introduced a new azd AI agent extension that lets developers build and deploy Microsoft Foundry agents directly from their local development environments. The update brings agent workflows ...

Google has launched an official Colab extension for Visual Studio Code, aiming to bridge the gap between local development and powerful cloud computing for AI and machine learning. The new tool allows ...

GlassWorm, a self-propagating malware targeting Visual Studio Code (VS Code) extensions on the Open VSX marketplace, have apparently continued despite statements that the threat had been contained.

US regulators have approved Commonwealth LNG’s request for more time to bring its liquefied natural gas export terminal into service. Commonwealth on 2 October submitted a letter to the Federal Energy ...

Cybersecurity researchers have discovered a self-propagating worm that spreads via Visual Studio Code (VS Code) extensions on the Open VSX Registry and the Microsoft Extension Marketplace, ...

Artur is a copywriter and SEO specialist, as well as a small business owner. In his free time, he loves to play computer games and is glad that he was able to connect his professional career with his ...

Treat this as an immediate security incident, CISOs advised; researchers say it’s one of the most sophisticated supply chain attacks they’ve seen, and it’s spreading. A month after a self-propagating ...

A self-propagating worm is targeting Visual Studio Code (VS Code) extensions in a complex supply chain attack that has infected 35,800 developer machines so far with techniques the likes of which ...