Visual Studio Magazine

Hands On: Building an MCP Server with VS Code AI Toolkit's New Tool Catalog

Microsoft's AI Toolkit extension for VS Code now lets developers scaffold a working MCP server in minutes. Here's what that looks like in practice -- including the parts that don't work, and a simpler ...
Opinion
Database Trends and ApplicationsOpinion

IBM Releases the IBM Db2 Developer Extension for VS Code

IBM announced it is offering the IBM Db2 Developer Extension for Visual Studio (VS) Code-now generally available. Developers live in VS Code, but Db2 development often means switching tools to set up ...
Bleeping Computer

Flaws in popular VSCode extensions expose developers to attacks

Vulnerabilities with high to critical severity ratings affecting popular Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times could be exploited to steal local ...
IEEE

Protect Your Secrets: Understanding and Measuring Data Exposure in VSCode Extensions

Abstract: Recent years have witnessed the emerging trend of extensions in modern Integrated Development Environments (IDEs) like Visual Studio Code (VSCode) that significantly enhance developer ...
CoinDesk

Trust Wallet users lose $7 million to hacked Chrome extension

Trust Wallet users lost more than $7 million shortly after it released an updated version of its extension for the Chrome web browser. The stolen funds will be reimbursed, said Changpeng Zhao, a ...
GitHub

[Bug] 'Starting Client Failed' for extension SQL Server (mssql) on Windows

at ChildProcess.spawn (node:internal/child_process:420:11) at Object.spawn (node:child_process:820:9) at c:\Users$USERNAME$.vscode\extensions\ms-mssql.mssql-1.37.1 ...
Redmond Magazine

Microsoft Ignite 2025: SQL Server 2025 Is Here

With the official release of Microsoft's latest database offering, let's see what was improved and what still needs some work. Today, at Ignite, Microsoft announced the general availability of SQL ...
The Hacker News

Malicious VSX Extension "SleepyDuck" Uses Ethereum to Keep Its Command Server Alive

Cybersecurity researchers have flagged a new malicious extension in the Open VSX registry that harbors a remote access trojan called SleepyDuck. According to Secure Annex's John Tuckner, the extension ...
CSOonline

TigerJack’s malicious VSCode extensions mine, steal, and stay hidden

The coordinated campaign abuses Visual Studio Code and OpenVSX extensions to steal code, mine cryptocurrency, and maintain remote control, all while posing as legitimate developer tools. In a new ...
Bleeping Computer

Malicious crypto-stealing VSCode extensions resurface on OpenVSX

A threat actor called TigerJack is constantly targeting developers with malicious extensions published on Microsoft's Visual Code (VSCode) marketplace and OpenVSX registry to steal cryptocurrency and ...
The Hacker News

Chinese Hackers Exploit ArcGIS Server as Backdoor for Over a Year

Threat actors with ties to China have been attributed to a novel campaign that compromised an ArcGIS system and turned it into a backdoor for more than a year. The activity, per ReliaQuest, is the ...
Microsoft

Accelerating SQL Server 2025 momentum: Announcing the first release candidate

The first release candidate (RC0) of SQL Server 2025 is now available. As we move toward general availability, our focus shifts to delivering enhanced stability, performance, and product improvements ...