The Hacker News

Critical Flaws Found in Four VS Code Extensions with Over 125 Million Installs

Critical vulnerabilities in four widely used VS Code extensions could enable file theft and remote code execution across 125M ...
InfoWorld

Flaws in four popular VS Code extensions left 128 million installs open to attack

Three of the four vulnerabilities remained unpatched months after OX Security reported them to the maintainers.

Flaws in popular VSCode extensions expose developers to attacks

Vulnerabilities with high to critical severity ratings affecting popular Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times could be exploited to steal local ...

GitHub adds Claude and Codex AI coding agents

Microsoft-owned GitHub continues to embrace OpenAI and Anthropic AI advances.
Yahoo Finance

Microsoft Directed Engineers to Use Claude Code. Is This Another Hit to OpenAI?

Microsoft has committed to invest up to $5B in Anthropic as it diversifies AI bets. Some software stocks have declined as AI coding tools like Claude Code threaten SaaS pricing power. Investors ...
Bleeping Computer

Microsoft Copilot Studio extension for VS Code now publicly available

Microsoft announced that the Copilot Studio extension for the Visual Studio Code (VS Code) integrated development environment is now available to all users. Developers can use it to build and manage ...
InfoWorld

Microsoft previews C++ code editing tools for GitHub Copilot

Microsoft is providing early access to C++ code editing tools for GitHub Copilot via the Visual Studio 2026 Insiders channel. These C++ tools allow GitHub Copilot to go beyond file searches and unlock ...
Forbes

2FA Code Attacks Surge As Russian Hackers Target Microsoft Users

Microsoft 365 is under attack, China and Russia afflited hackers suspected. Updated December 23 with advice from a mobile security solutions expert regarding the Russian device code attacks targeting ...
Computerworld

What does OpenAI’s ‘Code Red’ warning mean for Microsoft?

Google’s new Gemini 3 AI model is beating the pants off OpenAI’s ChatGPT, and it’s embedded in an array of Google products — a threat that Microsoft can’t ignore. Three years ago, OpenAI jumpstarted ...
ZDNet

Microsoft's new AI agents won't just help us code, now they'll decide what to code

Microsoft is moving beyond copilots to fully autonomous agents. Foundry and MCP let agents assemble solutions using 1,400 tools. IQ services aim to give agents true context and understanding. At ...
PC World

Microsoft adds visual search to Windows 11’s built-in screenshot tool

Microsoft is rolling out a new version of the Snipping Tool in Windows 11, which might be worth paying attention to. The big news with this update is that Microsoft is adding a visual search feature ...
CSOonline

Self-propagating worm found in marketplaces for Visual Studio Code extensions

Treat this as an immediate security incident, CISOs advised; researchers say it’s one of the most sophisticated supply chain attacks they’ve seen, and it’s spreading. A month after a self-propagating ...