For a few days now, a supply chain attack has been running through the Visual Studio Code marketplaces. Both Microsoft's Marketplace and the alternative Open-VSX marketplace of the Eclipse Foundation ...

Threat actors continue to probe Visual Studio Code's extension ecosystem, and a late November incident shows how quickly a trusted developer tool can be turned into a supply chain beachhead. In a ...

Microsoft’s Visual Studio Code (VS Code) has become a go-to integrated development environment (IDE) for developers worldwide, thanks to its versatility, lightweight design, and extensive library of ...

A campaign involving 19 Visual Studio (VS) Code extensions that embed malware inside their dependency folders has been uncovered by cybersecurity researchers. Active since February 2025 but identified ...

Developers using the "Insiders" build of the May 2024 Visual Studio Code update, bringing the open-source-based, cross-platform code editor to version 1.90, can now enjoy enhanced chat AI ...

An unknown threat actor is deploying a large-scale, sophisticated cryptojacking campaign through a series of malicious extensions in Visual Studio Code, Microsoft’s lightweight source-code editor, ...

日本時間11月12日にリリースされた「Visual Studio Code」の2025年10月アップデート（v1.106）では、コードの入力中にAIがその続きを提案する「インラインサジェスト」（inline suggestions）機能がオープンソース化された。これは2025年5月より進められている「Visual ...