A compromised Open VSX publisher account was used to distribute malicious extensions in a new GlassWorm supply chain attack.

This week’s cybersecurity recap highlights key attacks, zero-days, and patches to keep you informed and secure.

The latest enhancements to our platform empower organizations to stop third-party risk from ever entering their software code, providing them with a prevention-first approach.” Package Firewall, ...

With the CLI tool winapp, Microsoft wants to simplify Windows development for cross-platform developers. It handles SDK ...

AI编程助手的流行正吸引新型网络攻击者。2026年1月27日，Aikido Security安全研究员Charlie Eriksen发现一款伪装成热门工具"ClawdBot"的恶意Visual Studio Code扩展。这款名为"ClawdBot ...

GitHub's new Agents tab centralizes Copilot coding agent sessions in a repository, making it easier to launch tasks, track progress, and review the resulting pull requests in standard tooling such as ...

North Korea is doubling down on a familiar playbook by weaponizing trust in open-source software and developer workflows. The ...

VS Code forks like Cursor, Windsurf, and Google Antigravity may share a common foundation, but hands-on testing shows they ...

Microsoft’s new winapp CLI simplifies Windows app development with one-command setup, faster testing, and easier packaging.

The project is in an experimental, pre-alpha, exploratory phase with the intention to be productionized. We move fast, break things, and explore various aspects of the seamless developer experience ...

North Korean-linked hackers have targeted more than 3,100 IP addresses tied to AI, crypto, and finance firms through fake job interviews. The campaign used frau ...

Microsoft today announced the release of the Windows App Development CLI (winapp) in public preview. This open source command ...