The Hacker News

Researchers Uncover 73 Fake VS Code Extensions Delivering GlassWorm v2 Malware

VS Code extensions since Dec 21, 2025 fuel GlassWorm v2, installing cross-IDE malware and stealing credentials.
Security Boulevard

Microsoft’s April Security Update of High-Risk Vulnerability Notice for Multiple Products

Overview On April 15, NSFOCUS CERT detected that Microsoft released the April Security Update patch, fixing 165 security issues involving Windows, Microsoft Office, Microsoft SQL Server, Microsoft ...
The Hacker News

Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain

Malicious KICS Docker tags and VS Code versions 1.17.0, 1.19.0 enabled data exfiltration, risking exposed infrastructure ...

Rethink your dev setup with Microsoft’s Visual Studio Professional for only $43

TL;DR: Get Microsoft Visual Studio Professional 2026 for $42.97 (reg. $499.99) and streamline your workflow with AI-assisted ...
XDA Developers on MSN

These VS Code extensions let me ditch three separate apps for notes, tasks, and code

VS Code is no longer just an IDE.

The most exciting laptop I’ve seen in forever

Some of these are staples: Readwise Reader, Pocket Casts, MyMind, and Arc are all apps I’ve used for a long time and am very ...

Open source package with 1 million monthly downloads stole user credentials

Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a ...

GlassWorm malware attacks return via 73 OpenVSX "sleeper" extensions

A new wave of the Glassworm campaign is targeting the OpenVSX ecosystem with 73 "sleeper" extensions that turn malicious ...