Marketplace that were collectively installed 1.5 million times, exfiltrate developer data to China-based servers.

Microsoft is urging employees to use Claude Code alongside GitHub Copilot, signaling a broader multi-tool AI coding strategy.

This release helps developers get from idea to shipping code faster, limiting interruptions and endless context switching.

A spear-phishing campaign tied to the Democratic People's Republic of Korea (DPRK) uses trusted Microsoft infrastructure to ...

North Korean-linked hackers targeted more than 3,100 IP addresses tied to AI, crypto, and finance firms using fake job interviews, security researchers said.

Microsoft has released the Copilot Studio extension for Visual Studio Code to general availability, enabling teams to build, version, review, and deploy Copilot Studio agents using standard software ...

Microsoft released new open‑source quantum development tools that deepen VS Code and Copilot integration while targeting real ...

Once trust is granted to the repository's author, a malicious app executes arbitrary commands on the victim's system with no ...

The contagious interview campaign continues.

The malicious activity is targeting organizations with software development teams that rely on VS Code and third-party ...

Threat actors behind the campaign are abusing Microsoft Visual Studio Code’s trusted workflows to execute and persist ...

North Korean hackers abuse Visual Studio Code task files in fake job projects to deploy backdoors, spyware, and crypto miners ...