Malicious Microsoft VSCode AI extensions might have hit over 1.5 million users

More than 1.5 million people may have had their sensitive data exfiltrated to Chinese hackers through two malicious ...
The Hacker News

Malicious VS Code AI Extensions with 1.5 Million Installs Steal Developer Source Code

Security researchers found two AI-branded VS Code extensions with 1.5M installs that covertly send source code and files to ...

Researchers broke every AI defense they tested. Here are 7 questions to ask vendors.

Researchers from OpenAI, Anthropic, and Google DeepMind found that adaptive attacks bypassed 12 AI defenses that claimed near ...

Malicious AI extensions on VSCode Marketplace steal developer data

Marketplace that were collectively installed 1.5 million times, exfiltrate developer data to China-based servers.
Cybernews

Spyware disguised as ChatGPT is harvesting data from 1.5M VS Code developers

Fake AI coding assistants for VS Code, disguised as ChatGPT extensions, infected over 1.5 million developers with spyware.
The Hacker News

PLUGGYAPE Malware Uses Signal and WhatsApp to Target Ukrainian Defense Forces

CERT-UA reports PLUGGYAPE malware attacks targeting Ukrainian defense forces via Signal and WhatsApp, using phishing links ...
TechCrunch

Google’s vibe-coding tool Opal comes to Gemini

Google’s vibe-coding tool, Opal, is making its way to Gemini. The company on Wednesday said it is integrating the tool, which lets you build AI-powered mini apps, inside the Gemini web app, allowing ...
Inc

How Base44 Found a Buyer 4 Months After Launching

As a solo founder, Shlomo handled every aspect of Base44, from sales to engineering to customer support. Early on, he would wake up every two to three hours to make sure the platform was still running ...
CNET

What Is Vibe Coding? Everything to Know About AI That Builds Apps for You

Vibe coding turns software development into a conversation. You focus on the idea, and the AI model handles most of the implementation. Barbara is a tech writer specializing in AI and emerging ...
Infosecurity-magazine.com

Malware Discovered in 19 Visual Studio Code Extensions

A campaign involving 19 Visual Studio (VS) Code extensions that embed malware inside their dependency folders has been uncovered by cybersecurity researchers. Active since February 2025 but identified ...
TechCrunch

Claude Code is coming to Slack, and that’s a bigger deal than it sounds

Anthropic is launching Claude Code in Slack, allowing developers to delegate coding tasks directly from chat threads. The beta feature, available Monday as a research preview, builds on Anthropic’s ...