SecurityWeek

VS Code Configs Expose GitHub Codespaces to Attacks

Attackers can abuse VS Code configuration files for RCE when a GitHub Codespaces user opens a repository or pull request.
Dark Reading

GlassWorm Malware Returns to Shatter Developer Ecosystems

The self-replicating malware has poisoned a fresh set of Open VSX software components, leaving potential downstream victims ...
Visual Studio Magazine

VS Code Team Member Blames User Trust Decisions in Repo-Based Attacks

In a a robust Hacker News thread sparked by Jamf Threat Labs research, a VS Code team member defended the editor's Workspace ...
Infosecurity Magazine

Malicious Commands in GitHub Codespaces Enable RCE

A set of attack vectors in GitHub Codespaces have been uncovered that enable remote code execution (RCE) by opening a ...

Over half a million VKontakte accounts hijacked using malicious Chrome extensions

Five extensions were doing all sorts of malicious acts, including stealing payment data.

GlassWorm Malware Hits macOS Through Trusted Open VSX Extensions

Cybersecurity researchers from Socket’s Threat Research team have identified a developer-compromise supply chain attack ...
How-To Geek on MSN

How I built the perfect programming platform in under 10 minutes

Building your perfect programming environment is easier than you think. Here's how to do it in minutes!
The Malaysian Reserve

End the Agentic Amnesia: EverMind Launches EverMemOS Cloud and Kicks Off “Memory Genesis 2026” Global Developer Hackathon Supported by OpenAI

Offering a $80,000+ Prize Pool and Possible 50% Subscription Revenue Share to Developers Building the Future of Stateful AI.SAN MATEO, Calif., Feb. 3, ...