Microsoft Virtual Studio Code is being targeted by North Korean hackers

The contagious interview campaign continues.
The Hacker News

Why Secrets in JavaScript Bundles are Still Being Missed

Scanning 5M apps uncovered 42K exposed secrets in JavaScript bundles, revealing major gaps in traditional SAST, DAST, and ...

Jamf has a warning for macOS vibe coders

Just yesterday, we noted the growing threat of ransomware. Now, Jamf Threat Labs is warning that North Korean threat actors ...
SecurityWeek

North Korean Hackers Target macOS Developers via Malicious VS Code Projects

North Korean hackers target macOS developers with malware hidden in Visual Studio Code task configuration files.
CSO Online

Contagious Interview turns VS Code into an attack vector

Threat actors behind the campaign are abusing Microsoft Visual Studio Code’s trusted workflows to execute and persist ...
Dark Reading

'Contagious Interview' Attack Now Delivers Backdoor Via VS Code

Once trust is granted to the repository's author, a malicious app executes arbitrary commands on the victim's system with no ...
Electronic Design

Turning to Generative AI for Some Coding Help

In some sense, it’s comparable to new users of spreadsheets who think they can generate an accounting package. There are good ...
AARP

Applications Open for $8 Million in AARP Community Challenge Grants

Over the past decade, the AARP Community Challenge has invested $24.3 million in grants in 2,100 community ...
Junior Mining Network

Spark Energy Minerals Announces Warrant Repricing and Exercise Incentive Program

January 21, 2026) - Spark Energy Minerals (CSE: SPRK) (OTCID: SPARF) (FSE: 8PC) (" Spark " or the " Company ") is pleased to ...
The Hacker News

AWS CodeBuild Misconfiguration Exposed GitHub Repos to Potential Supply Chain Attacks

A misconfigured AWS CodeBuild webhook allowed bypass of actor ID checks, risking takeover of four AWS GitHub repositories ...