Malicious VSCode extensions on Microsoft's registry drop infostealers

Two malicious extensions on Microsoft's Visual Studio Code Marketplace infect developers' machines with information-stealing ...
The Hacker News

Researchers Find Malicious VS Code, Go, npm, and Rust Packages Stealing Developer Data

Researchers found malicious VS Code extensions and Go, npm, and Rust packages stealing developer data via hidden payloads and exfiltration.
Cybernews

New malware on Microsoft Marketplace steals passwords and screenshots of desktops

Malicious Visual Studio Code extensions disguised as dark themes and AI assistants infect developers with infostealing ...
Infosecurity Magazine

Malicious VS Code Extensions Deploy Advanced Infostealer

Two malicious Visual Studio Code extensions, Bitcoin Black and Codo AI, have been observed harvesting sensitive user data ...
InfoWorld

AI-assisted software development with Amazon Q Developer

Amazon Q Developer is a useful AI-powered coding assistant with chat, CLI, Model Context Protocol and agent support, and AWS ...
InfoWorld

Microsoft’s Dev Proxy puts APIs to the test

Building distributed apps requires specialized tools. Microsoft delivers with an API simulator that supports complex mocks ...

Microsoft’s Patch Tuesday: 57 Flaws Fixed

KB5072033 addresses vulnerabilities across Windows systems and Office applications—including one actively exploited zero-day.
The Hacker News

ThreatsDay Bulletin: Spyware Alerts, Mirai Strikes, Docker Leaks, ValleyRAT Rootkit — and ...

The latest ThreatsDay Bulletin breaks down the week’s biggest stories — rootkits evading Windows, Docker leaks, AI risks and ...