Researchers found malicious VS Code extensions and Go, npm, and Rust packages stealing developer data via hidden payloads and exfiltration.

Threat actors are still abusing Visual Studio Code extensions as an entry point, with the latest fake Prettier incident ...

Malicious Visual Studio Code extensions disguised as dark themes and AI assistants infect developers with infostealing ...

A new campaign involving 19 malicious Visual Studio Code extensions used a legitimate npm package to embed malware in ...

Two malicious extensions on Microsoft's Visual Studio Code Marketplace infect developers' machines with information-stealing ...

A stealthy campaign with 19 extensions on the VSCode Marketplace has been active since February, targeting developers with ...

A new malware campaign is A/B testing delivery effectiveness on software developers using malicious VS Code extensions.

D espite the programming landscape teeming with cool code editors, many developers (including yours truly) rely on Visual Studio Code to develop apps, create scripts, and edit con ...

Microsoft has deactivated the IntelliCode extensions for VS Code and refers to Copilot, which has a limited free volume.

Microsoft has begun decommissioning IntelliCode in VS Code, ending free local AI-assisted completions and shifting its ...