VS Code extensions since Dec 21, 2025 fuel GlassWorm v2, installing cross-IDE malware and stealing credentials.

Socket has notified the Eclipse Foundation, which oversees the Open VSX marketplace, of the latest fraudulent additions, and Burckhardt expects that by now all 73 have been deleted.

Try these extensions and you'll wonder how you ever lived without them!

Malicious KICS Docker tags and VS Code versions 1.17.0, 1.19.0 enabled data exfiltration, risking exposed infrastructure ...

GlassWorm, a known malware, has put 73 harmful extensions into OpenVSX's registry. Hackers use it to steal developers' crypto ...

Ahead of its April 29 fiscal Q3 earnings release, Microsoft has introduced a range of product updates and strategic changes.

Aikido Security today launched Aikido Endpoint, a lightweight security agent that protects developer devices against software ...

Amid the ongoing GPU shortage, Ocean Network is looking to connect the world’s idle computing power with those who need it.

The Bitwarden CLI NPM package compromise is tied to a Checkmarx supply chain attack and references the Shai-Hulud worm.

Microsoft officially announced TypeScript 7.0 Beta on April 21, 2026. The company says TypeScript 7.0 is often 10 times faster than 6.0. The beta ships through @typescript/native-preview@beta and tsgo ...

Osirus AI today announced the public launch of its enterprise AI platform, built from the ground up by three founders with ...

Microsoft has embedded GitHub Copilot as a default VS Code extension in version 1.116, adding agent debug logging, terminal ...