The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...

The infamous GlassWorm malware has infected dozens more Open VSX software packages, according to new research.

Threat actors are publishing clean extensions that later update to depend on hidden payload packages, bypassing marketplace ...

A sophisticated malware operation targeting software developers has expanded its reach by exploiting trusted extension ...

Microsoft releases Windows Terminal 1.24 and Preview 1.25 with new settings tools, improved keybindings, faster I/O ...

The new release allows using experimental agent plug-ins and the new Agent Debug Panel offers detailed insights into chat ...

Overview On February 11, 2026, NSFOCUS CERT monitored Microsoft’s release of its February security update patches, addressing 59 security issues across widely used products such as Windows, Azure, ...

In the AI developer boom, some of the most important battlegrounds are not glamorous models or splashy chatbots. They are the quiet pipes that keep modern coding tools fed and up to date.

The Open VSX registry, used for installing extensions in editors compatible with Visual Studio Code (VS Code), will run on ...

Critical and high-severity vulnerabilities were found in four widely used Visual Studio Code extensions with a combined 128 million downloads, exposing developers to file theft, remote code execution, ...

Cybersecurity researchers have discovered two malicious Microsoft Visual Studio Code (VS Code) extensions that are advertised as artificial intelligence (AI)-powered coding assistants, but also harbor ...