The Hacker News

Researchers Uncover 73 Fake VS Code Extensions Delivering GlassWorm v2 Malware

VS Code extensions since Dec 21, 2025 fuel GlassWorm v2, installing cross-IDE malware and stealing credentials.
Visual Studio Magazine

Visual Studio Code 1.117 Expands Copilot Controls for Business and Enterprise User

VS Code 1.117 adds bring-your-own model key support for Copilot Business and Enterprise users and introduces a set of chat, agent, terminal, and TypeScript updates.
The Hacker News

Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain

Malicious KICS Docker tags and VS Code versions 1.17.0, 1.19.0 enabled data exfiltration, risking exposed infrastructure ...

Visual Studio Code 1.117: Enterprise customers can use their own LLM keys

Business and enterprise users can now connect their own API keys to use LLMs via OpenRouter, Ollama, Google, OpenAI, and more ...
Visual Studio Magazine

VS Code Updates Boost AI Agents, Terminal Control and Copilot Workflow

Across the April 8 and April 15, 2026 releases, Visual Studio Code expanded its agent-focused tooling with a new companion app, better terminal interaction, session debugging and more built-in Copilot ...
Dark Reading

DPRK Fake Job Scams Self-Propagate in 'Contagious Interview'

A compromised developer's repository serves as a worm-like infection vector to spread remote access Trojans (RATs) and other ...
Windows Report

Visual Studio Code Adds Built-In Copilot Chat and Agent Debug Logs

Microsoft has released Visual Studio Code version 1.116, introducing a set of AI-focused improvements that refine developer ...
Security Boulevard

Tropic Trooper Pivots to AdaptixC2 and Custom Beacon Listener

IntroductionOn March 12, 2026, Zscaler ThreatLabz discovered a malicious ZIP archive containing military-themed document lures targeting Chinese-speaking individuals. Our analysis of this sample ...

Checkmarx-style supply chain attack hits password manager Bitwarden

A malicious version of the Bitwarden command-line interface (CLI) password manager was briefly distributed via the Node ...

New Android development tool designed for robots, not humans

The primary Android development environment remains Android Studio, which has built-in support for AI agents, but the new CLI ...

Microsoft April 2026 Patch Tuesday fixes 167 flaws, 2 zero-days

Today is Microsoft's April 2026 Patch Tuesday with security updates for 167 flaws, including 2 zero-day vulnerabilities.

The latest Microsoft Visual Studio is on sale for just $43

Updated coding flow, activated.