The Hacker News

Malicious VS Code AI Extensions with 1.5 Million Installs Steal Developer Source Code

Security researchers found two AI-branded VS Code extensions with 1.5M installs that covertly send source code and files to ...

Jamf has a warning for macOS vibe coders

Just yesterday, we noted the growing threat of ransomware. Now, Jamf Threat Labs is warning that North Korean threat actors ...
The Hacker News

CERT/CC Warns binary-parser Bug Allows Node.js Privilege-Level Code Execution

A flaw in the binary-parser npm package before version 2.3.0 lets attackers execute arbitrary JavaScript via unsanitized parser input.
Analytics Insight

Best VS Code Extensions for Faster Development in 2026

Overview: VS Code extensions can help developers improve speed, accuracy, and organization in coding workflows.AI, formatting ...
CSO Online

Contagious Interview turns VS Code into an attack vector

Threat actors behind the campaign are abusing Microsoft Visual Studio Code’s trusted workflows to execute and persist ...
InfoWorld

Visual Studio Code adds agent development extension

The Copilot Studio extension lets developers use any VS Code-compatible AI assistant to develop AI agents, then sync with ...
Electronic Design

Turning to Generative AI for Some Coding Help

In some sense, it’s comparable to new users of spreadsheets who think they can generate an accounting package. There are good ...

Hackers are using LLMs to build the next generation of phishing attacks

What if a phishing page was generated on the spot?
Dark Reading

'Contagious Interview' Attack Now Delivers Backdoor Via VS Code

Once trust is granted to the repository's author, a malicious app executes arbitrary commands on the victim's system with no ...
ZME Science

AI Is Writing Nearly a Third of All Software Code in the US as the Technology Takes Over Silicon Valley

In the United States, the share of new code written with AI assistance has skyrocketed from a mere 5% in 2022 to a staggering ...

Microsoft Virtual Studio Code is being targeted by North Korean hackers

The contagious interview campaign continues.
Enterprise Times

Yottaa launches MCP server purpose-built for eCommerce performance intelligence

Yottaa have announced the launch of its Model Context Protocol (MCP) server. Yotta says this makes it the first eCommerce-focused performance vendor to ...