Security researchers are increasingly citing Visual Studio Code as part of supply chain attacks on developers. Researchers at Jamf recently identified ...

The project is in an experimental, pre-alpha, exploratory phase with the intention to be productionized. We move fast, break things, and explore various aspects of the seamless developer experience ...

A spear-phishing campaign tied to the Democratic People's Republic of Korea (DPRK) uses trusted Microsoft infrastructure to ...

Microsoft has released the Copilot Studio extension for Visual Studio Code to general availability, enabling teams to build, ...

A new Visual Studio Code extension called Nogic sparked a wide-ranging Hacker News discussion, with commenters praising its ...

Once trust is granted to the repository's author, a malicious app executes arbitrary commands on the victim's system with no ...

Just yesterday, we noted the growing threat of ransomware. Now, Jamf Threat Labs is warning that North Korean threat actors ...

As part of the infamous Contagious Interview campaign, North Korean threat actors were seen abusing legitimate Microsoft ...

North Korean hackers target macOS developers with malware hidden in Visual Studio Code task configuration files.

Threat actors behind the campaign are abusing Microsoft Visual Studio Code’s trusted workflows to execute and persist ...

North Korean hackers abuse Visual Studio Code task files in fake job projects to deploy backdoors, spyware, and crypto miners ...