Visual Studio Magazine

Threat Actors Keep Weaponizing VS Code Extensions

Threat actors are still abusing Visual Studio Code extensions as an entry point, with the latest fake Prettier incident ...
Infosecurity Magazine

Malware Discovered in 19 Visual Studio Code Extensions

A new campaign involving 19 malicious Visual Studio Code extensions used a legitimate npm package to embed malware in ...

Malicious VSCode extensions on Microsoft's registry drop infostealers

Two malicious extensions on Microsoft's Visual Studio Code Marketplace infect developers' machines with information-stealing ...
マイナビニュース

Visual Studio Code拡張機能の欠陥とは

Mediumが指摘したVisual Studio Code拡張機能におけるセキュリティ上の欠陥は次のとおり。 権限モデルがない。拡張機能はすべての機能を使用できる。テーマに分類される拡張機能は一般的に視覚的な設定権限だけを必要とするが、コードの実行やファイルの ...
InfoWorld

Researchers warn of malicious Visual Studio Code extensions

Can developers trust extensions downloaded for Microsoft’s popular Visual Studio Code editor? Researchers at Aqua Nautilus say they have found that attackers could easily impersonate popular ...
Cybernews

New malware on Microsoft Marketplace steals passwords and screenshots of desktops

Malicious Visual Studio Code extensions disguised as dark themes and AI assistants infect developers with infostealing ...
Visual Studio Magazine

Microsoft Quietly Kills IntelliCode as AI Strategy Shifts to Subscription Copilot

Microsoft has begun decommissioning IntelliCode in VS Code, ending free local AI-assisted completions and shifting its ...
GIGAZINE

Microsoft allows its own special APIs to be used in Visual Studio Code extensions

Microsoft's text editor 'Visual Studio Code' has an extension marketplace, where users can easily install various extensions. A Reddit post pointed out that only Microsoft extensions can use special ...