AI-based VS Code forks recommended unclaimed extensions, allowing malicious uploads in Open VSX and risking developer systems ...

A campaign involving 19 Visual Studio (VS) Code extensions that embed malware inside their dependency folders has been uncovered by cybersecurity researchers. Active since February 2025 but identified ...

A new pair of malicious Visual Studio Code extensions capable of harvesting screenshots, browser sessions and stored credentials has been discovered by cybersecurity researchers. The extensions, ...

I tried to switch to lighter alternatives before, but I always went back the moment I needed a specific debugger or a niche UI theme. However, after a week with Zed, something changed. I have finally ...

Two malicious extensions on Microsoft's Visual Studio Code Marketplace infect developers' machines with information-stealing malware that can take screenshots, steal credentials, crypto wallets, and ...

Discover the leading code analysis tools for DevOps teams in 2025. Enhance your software development process with automated security and quality checks to mitigate risks and improve code health.

VS Code is more than just an excellent code editor. The real magic of VS Code isn’t just in the application itself, but in its massive ecosystem of extensions. They are essential tools that automate ...

A hacker planted data wiping code in a version of Amazon's generative AI-powered assistant, the Q Developer Extension for Visual Studio Code. A checklist for securing Microsoft 365. Set it and forget ...

Aider is a “pair-programming” tool that can use various providers as the AI back end, including a locally running instance of Ollama (with its variety of LLM choices). Typically, you would connect to ...

VVS Stealer is a Python-based malware sold on Telegram that steals Discord tokens, browser data, and credentials using heavy ...