A published VS Code extension didn't hide the fact that it encrypts and exfiltrates data and also failed to remove obvious signs it was AI-generated.
XDA Developers on MSN
7 VS Code extensions that make me a better developer
The Jupyter extension brings Jupyter Notebook functionality into VS Code. It lets you create, open, and edit .ipynb files ...
XDA Developers on MSN
I've only kept these 6 VS Code extensions after deep-cleaning the code editor
Besides its lightweight design and compatibility with all major operating systems, a massive collection of extensions is one ...
Microsoft's latest Visual Studio Code update, 1.105 (September 2025 update, announced Oct. 9), ships a focused set of improvements that push AI workflows further into the editor while polishing ...
Supply-chain attacks have evolved considerably in the las two years going from dependency confusion or stolen SSL among ...
Cybersecurity researchers have flagged a malicious Visual Studio Code (VS Code) extension with basic ransomware capabilities ...
Cryptopolitan on MSN
3 VS Code extensions stealing credentials for GitHub, VSX, and crypto wallets
Developers will have to contend with a dormant turned active malicious code on Visual Studio Code (VS Code) extensions, which ...
A self-propagating worm is targeting Visual Studio Code (VS Code) extensions in a complex supply chain attack that has infected 35,800 developer machines so far with techniques the likes of which ...
Treat this as an immediate security incident, CISOs advised; researchers say it’s one of the most sophisticated supply chain attacks they’ve seen, and it’s spreading. A month after a self-propagating ...
A new malware worm campaign has infected multiple Microsoft Visual Studio Code extensions using invisible Unicode characters to hide malicious code from both reviewers and security tools, security ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback