Eclipse Foundation to require pre-publish security checks for Open VSX extensions to reduce VS Code supply-chain risk.

The January 2026 update has arrived.

A new GlassWorm malware attack through compromised OpenVSX extensions focuses on stealing passwords, crypto-wallet data, and developer credentials and configurations from macOS systems.

The classic VS Code is great and all, but these specialized forks are better for certain programming tasks ...

Visual Studio Code 1.109 introduces enhancements for providing agents with more skills and context and managing multiple ...

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable ...

WebAssembly runtime introduces experimental async API and support for dynamic linking in WASIX, enabling much broader support ...

How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to ...

The January 2026 release of Visual Studio Code expands AI-assisted development with structured planning agents, parallel subagents, and unified orchestration across local and cloud environments.

The January 2026 update to VS Code (v1.109) transforms the editor into a multi-agent orchestration hub, allowing developers ...

This week’s cybersecurity recap highlights key attacks, zero-days, and patches to keep you informed and secure.

Two malicious VS Code extensions have exfiltrated code snippets, API keys, and proprietary algorithms from 1.5 million ...