Microsoft

Malicious AI Assistant Extensions Harvest LLM Chat Histories

Malicious AI browser extensions collected LLM chat histories and browsing data from platforms such as ChatGPT and DeepSeek. With nearly 900,000 installs and activity across more than 20,000 enterprise ...
InfoWorld

The revenge of SQL: How a 50-year-old language reinvents itself

From the browser to the back end, the ‘boring’ choice is exciting again. We look at three trends converging to bring SQL back ...
Austin American-Statesman

Austin developer avoids jail again as contempt hearing over $11.5M judgment is reset

Nate Paul, the one-time superstar Austin developer who played a central role in the impeachment of Attorney General Ken Paxton, dodged jail time again Monday. He avoided a possible trip to the Travis ...
The Hacker News

Malicious VS Code AI Extensions with 1.5 Million Installs Steal Developer Source Code

Cybersecurity researchers have discovered two malicious Microsoft Visual Studio Code (VS Code) extensions that are advertised as artificial intelligence (AI)-powered coding assistants, but also harbor ...
Bleeping Computer

Malicious AI extensions on VSCode Marketplace steal developer data

Two malicious extensions in Microsoft’s Visual Studio Code (VSCode) Marketplace that were collectively installed 1.5 million times exfiltrate developer data to China-based servers. Both extensions are ...
blockchain

Claude Code VS Code Extension Now Generally Available: Enhanced AI Coding with Slash Commands and Context Integration

According to @claudeai, the Claude Code extension for Visual Studio Code has reached general availability, providing developers with advanced AI coding assistance ...
The Hacker News

Evelyn Stealer Malware Abuses VS Code Extensions to Steal Developer Credentials and Crypto

Cybersecurity researchers have disclosed details of a malware campaign that's targeting software developers with a new information stealer called Evelyn Stealer by weaponizing the Microsoft Visual ...
Financial Advisor

Oracle Is Having Its Own 'Code Red' AI Moment

Anyone wanting reassurance that building the infrastructure for artificial intelligence isn’t going to break the bank, won’t have enjoyed Oracle Corp.’s latest earnings report. Wall Street’s de facto ...
Infosecurity-magazine.com

Malware Discovered in 19 Visual Studio Code Extensions

A campaign involving 19 Visual Studio (VS) Code extensions that embed malware inside their dependency folders has been uncovered by cybersecurity researchers. Active since February 2025 but identified ...
Infosecurity-magazine.com

Malicious VS Code Extensions Deploy Advanced Infostealer

A new pair of malicious Visual Studio Code extensions capable of harvesting screenshots, browser sessions and stored credentials has been discovered by cybersecurity researchers. The extensions, ...
Developer Tech

Malware campaign uses VS Code extensions for A/B testing

A new malware campaign is A/B testing delivery effectiveness on software developers using malicious VS Code extensions. In a campaign tracked by Koi, a threat actor published two malicious VS Code ...
Visual Studio Magazine

Threat Actors Keep Weaponizing VS Code Extensions

Threat actors continue to probe Visual Studio Code's extension ecosystem, and a late November incident shows how quickly a trusted developer tool can be turned into a supply chain beachhead. In a ...