TechJuice

GlassWorm Malware Silently Infects Hundreds of Python Projects

GlassWorm attack uses stolen GitHub tokens to inject malware into Python repositories, exposing developers to supply chain risks.

Pythonを用いたレトロゲームエンジン「Pyxel」に公式のVisual Studio Code ...

レトロゲームエンジン「Pyxel」で3月2日、「Visual Studio Code」拡張機能の提供が開始された。「Pyxel」の作者自身が開発した公式の拡張機能で、現在「Visual Studio Marketplace」から無償でダウンロード可能 ...

「Visual Studio Code」v1.110が公開 ~長時間・複雑なエージェントの運用 ...

米Microsoftは3月5日(日本時間)、「Visual Studio Code」の2026年2月アップデート(v1.110)を正式公開した。執筆時の最新版はセキュリティ問題の修正が施されたv1.110.1。 エージェントプラグイン ...
SecurityWeek

ForceMemo: Python Repositories Compromised in GlassWorm Aftermath

Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python repositories.
InfoWorld

Open VSX extensions hijacked: GlassWorm malware spreads via dependency abuse

Threat actors are publishing clean extensions that later update to depend on hidden payload packages, bypassing marketplace ...
How-To Geek on MSN

Why I'm learning to code in Kate instead of VS Code

I'm taking the road less traveled.
Microsoft

Contagious Interview: Malware delivered through fake developer job interviews

The Contagious Interview campaign weaponizes job recruitment to target developers. Threat actors pose as recruiters from crypto and AI companies and deliver backdoors such as OtterCookie and ...

For March, Patch Tuesday delivers fixes for 83 vulnerabilities

In addition to rolling out patches to address two zero-days affecting SQL Server and .NET, Microsoft introduced Common Log ...