A Microsoft Visual Studio Code extension for Moltbot turns out to actually deliver a malware payload to unsuspecting users.

A fake VS Code extension posing as a Moltbot AI assistant installed ScreenConnect malware, giving attackers persistent remote ...

Research shows that even simple Chrome extensions can quietly invade user privacy, with some hijacking clipboards, ...

Two VSCode extensions are harvesting sensitive data and sending it to China.

Security researchers found two AI-branded VS Code extensions with 1.5M installs that covertly send source code and files to ...

Cybersecurity firm LayerX uncovers 17 malicious extensions that can enable click fraud, user tracking, and more. The most popular extension was downloaded more than 500K times.

Marketplace that were collectively installed 1.5 million times, exfiltrate developer data to China-based servers.

Microsoft is urging employees to use Claude Code alongside GitHub Copilot, signaling a broader multi-tool AI coding strategy.

Another wave of malicious browser extensions capable of tracking user activity have been found across Chrome, Firefox, and ...

A new Visual Studio Code extension called Nogic sparked a wide-ranging Hacker News discussion, with commenters praising its ...

A review of five non-Copilot AI coding assistants available in the Visual Studio Marketplace that support Visual Studio 2026 ...