Microsoft has begun decommissioning IntelliCode in VS Code, ending free local AI-assisted completions and shifting its ...

A new campaign involving 19 malicious Visual Studio Code extensions used a legitimate npm package to embed malware in ...

Visual Studio Code just released its November 2025 update, version 1.107. There are more improvements for AI coding agents ...

The text editor is the most critical tool in a programmer's arsenal, acting as the daily workbench, primary interface, and engine for creation. For years, Microsoft's Visual Studio Code (VS Code) has ...

Two malicious extensions on Microsoft's Visual Studio Code Marketplace infect developers' machines with information-stealing malware that can take screenshots, steal credentials, crypto wallets, and ...

GlassWorm, a self-propagating malware targeting Visual Studio Code (VS Code) extensions on the Open VSX marketplace, have apparently continued despite statements that the threat had been contained.

Treat this as an immediate security incident, CISOs advised; researchers say it’s one of the most sophisticated supply chain attacks they’ve seen, and it’s spreading. A month after a self-propagating ...

A new and ongoing supply-chain attack is targeting developers on the OpenVSX and Microsoft Visual Studio marketplaces with self-spreading malware called GlassWorm that has been installed an estimated ...

Organizations have accidentally exposed secrets across Microsoft Visual Studio Code (VS Code) marketplaces, posing significant risks not just to the organizations themselves but also to the greater ...