The Hacker News

Malicious VS Code AI Extensions with 1.5 Million Installs Steal Developer Source Code

Security researchers found two AI-branded VS Code extensions with 1.5M installs that covertly send source code and files to ...

Malicious AI extensions on VSCode Marketplace steal developer data

Marketplace that were collectively installed 1.5 million times, exfiltrate developer data to China-based servers.
The Hacker News

Fake Moltbot AI Coding Assistant on VS Code Marketplace Drops Malware

A fake VS Code extension posing as a Moltbot AI assistant installed ScreenConnect malware, giving attackers persistent remote ...
The Register on MSN

VS Code for Linux may be secretly hoarding trashed files

Versions installed via Snap don't delete files when users empty system trash Linux users who installed Microsoft's Visual ...
XDA Developers on MSN

A nasty VS Code Snap bug is devouring gigabytes of storage by not purging deleted files

You can delete them manually though.
Cybernews

Spyware disguised as ChatGPT is harvesting data from 1.5M VS Code developers

Fake AI coding assistants for VS Code, disguised as ChatGPT extensions, infected over 1.5 million developers with spyware.
Geeky Gadgets

Connect a Llama 3.1 Chat AI Model to VSCode and Code Faster with Local Replies

The first step in integrating Ollama into VSCode is to install the Ollama Chat extension. This extension enables you to interact with AI models offline, making it a valuable tool for developers. To ...
Bleeping Computer

Chinese hackers use Visual Studio Code tunnels for remote access

Chinese hackers targeting large IT service providers in Southern Europe were seen abusing Visual Studio Code (VSCode) tunnels to maintain persistent remote access to compromised systems. VSCode ...
Visual Studio Magazine

Buzz About VS Code Extension for Codebase Visualization

A new Visual Studio Code extension called Nogic sparked a wide-ranging Hacker News discussion, with commenters praising its ...