Malicious AI extensions on VSCode Marketplace steal developer data

Marketplace that were collectively installed 1.5 million times, exfiltrate developer data to China-based servers.
InfoQ

Ramp Builds Internal Coding Agent That Powers 30% of Engineering Pull Requests

Ramp has shared the architecture of Inspect. This internal coding agent has quickly reached about 30% adoption for merged ...
IEEE

SF3D-MDA: A Road User Behavior Annotation Framework and Recognition Method Based On Vehicle-Mounted Visual Information

Abstract: Addressing the critical challenge of spatiotemporal semantic disjunction caused by conventional bird’s-eye view trajectory modeling methods in ego-vehicle perspective road user behavior ...
InfoWorld

Visual Studio Code adds multi-agent orchestration

With Visual Studio Code 1.107, developers can use GitHub Copilot and custom agents together and delegate work across local, background, and cloud agents. Just-released Visual Studio Code 1.107, the ...
Neowin

Visual Studio Code 1.107 launches with multi-agent orchestration and Agent HQ0 0

Microsoft has released Visual Studio Code version 1.107 (November 2025) to the general public. A major theme for this release is the enhancement of agents, introducing multi-agent orchestration and ...
Infosecurity-magazine.com

Malware Discovered in 19 Visual Studio Code Extensions

A campaign involving 19 Visual Studio (VS) Code extensions that embed malware inside their dependency folders has been uncovered by cybersecurity researchers. Active since February 2025 but identified ...
The Hacker News

Researchers Find Malicious VS Code, Go, npm, and Rust Packages Stealing Developer Data

Cybersecurity researchers have discovered two new extensions on Microsoft Visual Studio Code (VS Code) Marketplace that are designed to infect developer machines with stealer malware. The VS Code ...
Windows Report

How to Install Visual Studio Code on Windows Step by Step

You start by getting the official installer from the Visual Studio Code website. Open your preferred browser on Windows. Go to the Visual Studio Code download page ...
Bleeping Computer

Glassworm malware returns in third wave of malicious VS Code packages

The Glassworm campaign, which first emerged on the OpenVSX and Microsoft Visual Studio marketplaces in October, is now in its third wave, with 24 new packages added on the two platforms. OpenVSX and ...
TechCrunch

Luminal raises $5.3 million to build a better GPU code framework

Three years ago, Luminal co-founder Joe Fioti was working on chip design at Intel when he came to a realization. While he was working on making the best chips he could, the more important bottleneck ...
Tallahassee Democrat

Dadi Precious Portrait Photography Studio Introduces Precision-Based Framework for Portrait Photography

Dadi Precious Portrait Photography Studio has announced the implementation of a new precision-based operational framework designed to enhance its expertise in professional portrait photography. The ...
The Hacker News

Vibe-Coded Malicious VS Code Extension Found with Built-In Ransomware Capabilities

Cybersecurity researchers have flagged a malicious Visual Studio Code (VS Code) extension with basic ransomware capabilities that appears to be created with the help of artificial intelligence – in ...