Researchers say the campaign targeted developer credentials and cloud secrets while abusing trusted publishing and AI coding ...

VS Code extensions since Dec 21, 2025 fuel GlassWorm v2, installing cross-IDE malware and stealing credentials.

GlassWorm, a known malware, has put 73 harmful extensions into OpenVSX's registry. Hackers use it to steal developers' crypto ...

The threat actor seeding the Open VSX code marketplace with fraudulent extensions that download the GlassWorm malware has ...

I have to apologize that my posting have been a little slow this week. There was a few things at work to get through and if ...

Visual Studio has never really been the lightweight option. It's not the tool you open just to tweak a config file or write a ...

Microsoft is making Visual Studio more agentic. New tools handle remote coding tasks and analyze live app behavior to find ...

Microsoft updates Visual Studio with cloud agents, Copilot upgrades, and improved debugging tools for modern AI-driven development.

The April update suppresses Copilot completions while IntelliSense is active, addressing a long-running editor conflict.

Just two days after GitHub announced usage-based billing for Copilot, Microsoft shipped VS Code 1.118 -- under its new weekly release cadence -- with significant token efficiency improvements designed ...

A new wave of the Glassworm campaign is targeting the OpenVSX ecosystem with 73 "sleeper" extensions that turn malicious ...