Microsoft Defender Experts identified a coordinated developer-targeting campaign delivered through malicious repositories disguised as legitimate Next.js projects and technical assessment materials.

DeFi lending protocol Moonwell lost $1.78 million after AI code from Claude Opus 4.6 led to an oracle configuration error. The error triggered instant liquidations ...

A reported smart contract exploit has triggered fresh concerns across decentralized finance markets. Losses reached approximately $1.78 million following a critical pricing failure. The DeFi hack ...

Developers are navigating confusing gaps between expectation and reality. So are the rest of us. Depending who you ask, AI-powered coding is either giving software developers an unprecedented ...

Cybersecurity researchers have discovered two new extensions on Microsoft Visual Studio Code (VS Code) Marketplace that are designed to infect developer machines with stealer malware. The VS Code ...

Amazon Web Services has announced a new class of AI systems," frontier agents," that can work autonomously for hours, even days, without human intervention, representing one of the most ambitious ...

The first step in integrating Ollama into VSCode is to install the Ollama Chat extension. This extension enables you to interact with AI models offline, making it a valuable tool for developers. To ...

A remote access trojan dubbed SleepyDuck, and disguised as the well-known Solidity extension in the Open VSX open-source registry, uses an Ethereum smart contract to establish a communication channel ...

The coordinated campaign abuses Visual Studio Code and OpenVSX extensions to steal code, mine cryptocurrency, and maintain remote control, all while posing as legitimate developer tools. In a new ...

A threat actor named WhiteCobra has been targeting VSCode, Cursor, and Windsurf users by planting 24 malicious extensions in the Visual Studio marketplace and the Open VSX registry. The campaign is ...