Attackers can abuse VS Code configuration files for RCE when a GitHub Codespaces user opens a repository or pull request.

The GitHub Copilot SDK turns the Copilot CLI into a cross-platform agent host with Model Context Protocol support.

Moltbot was originally called Clawdbot, but was recently renamed to avoid trademark issues, and is one of the more popular AI tools out there, with more than 93,000 stars on GitHub at press time. Its ...

A Microsoft Visual Studio Code extension for Moltbot turns out to actually deliver a malware payload to unsuspecting users.

A fake VS Code extension posing as a Moltbot AI assistant installed ScreenConnect malware, giving attackers persistent remote ...

Marketplace that were collectively installed 1.5 million times, exfiltrate developer data to China-based servers.

This release helps developers get from idea to shipping code faster, limiting interruptions and endless context switching.

A spear-phishing campaign by North Korean actors is abusing a legitimate feature of Microsoft Visual Studio (VS) Code to gain full remote control of targeted systems. In the campaign, discovered by ...

Threat actors behind the campaign are abusing Microsoft Visual Studio Code’s trusted workflows to execute and persist ...

Microsoft has released Visual Studio Code version 1.107 (November 2025) to the general public. A major theme for this release is the enhancement of agents, introducing multi-agent orchestration and ...

A campaign involving 19 Visual Studio (VS) Code extensions that embed malware inside their dependency folders has been uncovered by cybersecurity researchers. Active since February 2025 but identified ...