SecurityWeek

VS Code Configs Expose GitHub Codespaces to Attacks

Attackers can abuse VS Code configuration files for RCE when a GitHub Codespaces user opens a repository or pull request.
heise online

Visual Studio Code 1.109: Watch AI Models Think

Visual Studio Code 1.109 has been released, primarily bringing new features for handling AI agents. Developers can now follow the response generation of Anthropic Claude models in real-time in the ...
NDTV

"Will Never Write Code By Hand Again": How Anthropic's New AI Tool Is Rattling The Tech ...

Anthropic's new AI automation tool - Claude Cowork, has sent shockwaves through the global tech industry, sparking fears of a "SaaSpocalypse" and causing a significant sell-off in tech stocks. The ...
The Hacker News

Malicious VS Code AI Extensions with 1.5 Million Installs Steal Developer Source Code

Cybersecurity researchers have discovered two malicious Microsoft Visual Studio Code (VS Code) extensions that are advertised as artificial intelligence (AI)-powered coding assistants, but also harbor ...
Bleeping Computer

Malicious AI extensions on VSCode Marketplace steal developer data

Two malicious extensions in Microsoft’s Visual Studio Code (VSCode) Marketplace that were collectively installed 1.5 million times exfiltrate developer data to China-based servers. Both extensions are ...