Microsoft releases Visual Studio Code 1.124 with smarter autonomous AI agents

Microsoft's latest Visual Studio Code update aims to accelerate developer workflows by giving AI assistants the green light ...
Redmondmag.com

Supply Chain Attack Hits Microsoft GitHub Repos, AI Coding Tools

GitHub disabled 73 Microsoft repositories on June 5 after a malicious commit landed in an Azure project, in what researchers described as a supply chain attack aimed at developer workstations and AI ...
thearabianpost

Fake coding tests expose crypto developers

Software developers across close to 100 organisations have been targeted by a likely North Korea-linked hacking operation that used fake recruitment and code-review tasks to steal cryptocurrency, ...
WinBuzzer

VS Code Exploit Can Steal GitHub Tokens via github.dev

A VS Code exploit for github.dev can steal GitHub OAuth tokens after one malicious link, exposing private repositories while teams await a patch.
Microsoft

Visual Studio Licensing Overview

Visual Studio and Azure DevOps are available both as individual products and services and as part of a subscription. Visual Studio Community is available only as an individual product, and only to ...

Microsoft Visual Studio Professional 2026 is on sale for $35 through May 31

TL;DR: Microsoft Visual Studio Professional 2026 is available for a one-time payment of $34.97 (regularly $499.99) through ...
winbuzzer.com

GitHub Says VS Code Breach Exposed 3,800 Repositories

GitHub faces an internal repository breach this week after a poisoned VS Code extension on an employee device exposed roughly 3,800 internal repositories. Customer data stored outside those ...
Wired

A Hacker Group Is Poisoning Open Source Code at an Unprecedented Scale

A so-called software supply chain attack, in which hackers corrupt a legitimate piece of software to hide their own malicious code, was once a relatively rare event but one that haunted the ...
Bleeping Computer

GitHub links repo breach to TanStack npm supply-chain attack

GitHub says the hackers who breached 3,800 internal repositories gained access via a malicious version of the Nx Console VS Code extension, compromised in last week's TanStack npm supply-chain attack.
The Hacker News

GitHub Internal Repositories Breached via Malicious Nx Console VS Code Extension

GitHub on Wednesday officially confirmed that the breach of its internal repositories was the result of a compromise of an employee device involving a poisoned version of the Nx Console Microsoft ...
The Next Web

GitHub confirms hackers stole thousands of internal code repositories after employee installed a poisoned VS Code extension

GitHub confirmed that the cybercrime group TeamPCP exfiltrated roughly 3,800 internal code repositories after compromising an employee device through a poisoned VS Code extension. The Microsoft-owned ...
martincid.com

A poisoned VS Code extension just stole 3,800 of GitHub’s own internal repositories

GitHub is investigating unauthorized access to its internal repositories, and has confirmed that an attacker successfully exfiltrated data from roughly 3,800 of them. The intrusion arrived through a ...