Fake Solidity VSCode extension on Open VSX backdoors developers

A remote access trojan dubbed SleepyDuck, and disguised as the well-known Solidity extension in the Open VSX open-source registry, uses an Ethereum smart contract to establish a communication channel ...
The Hacker News

Malicious VSX Extension "SleepyDuck" Uses Ethereum to Keep Its Command Server Alive

Researchers uncover SleepyDuck RAT hidden in VSX extension, using Ethereum contracts to control infected hosts.
The Hacker News

Vibe-Coded Malicious VS Code Extension Found with Built-In Ransomware Capabilities

Cybersecurity researchers have flagged a malicious Visual Studio Code (VS Code) extension with basic ransomware capabilities ...

AI-Slop ransomware test sneaks on to VS Code marketplace

A malicious extension with basic ransomware capabilities seemingly created with the help of AI, has been published on Microsoft's official VS Code marketplace.
InfoWorld

Malicious npm packages contain Vidar infostealer

Researchers say the malware was in the repository for two weeks, advise precautions to defend against malicious packages.
Dark Reading

Coyote, Maverick Banking Trojans Run Rampant in Brazil

South America's largest country is notorious for banking malware attacks; Maverick self-terminates if its targeted user is ...

ドキュメントを手作業で保守する時代は終わり ~Google、「Code Wiki ...

米Googleは11月13日(現地時間)、「Code ...

コードを実行できるノートブック「Google Colab」の公式「VS Code」拡張 ...

米Googleは11月13日(現地時間)、「Visual Studio Code」から「Google Colab」へ直接接続できる拡張機能をリリースした。現在、アドオンストア「Visual Studio ...

VSCodeのPython拡張機能11月版をリリース、AI生成ドキュメントをコード ...

さらに、VSCode向用のPython向け言語サーバー拡張機能である「Pylance」では、ワイルドカードインポート(from module import *)を明示的な記述へ自動変換するコードアクションが追加された。これにより、可読性や保守性の向上を支援する。

GitHub CopilotとVS Codeに脆弱性 速やかなアップデートを:セキュリティ ...

MicrosoftはGitHub CopilotとVisual ...

10 Free UI/UX Design Tools to Try in 2026

In 2026, the barrier to entry for quality design work has never been lower. Many modern free UI/UX design tools now include AI assistants that generate layouts from text prompts, ...