Microsoft has had a VS Code extension for a long time, and it finally came back to bite them.

Discover the top 12 tools in 2026, from Cursor to Copilot, to speed up daily dev workflows and build apps faster!

For more than a year, a self-propagating worm rode VS Code extensions, npm packages, and stolen developer credentials through ...

Cybersecurity researchers create a five-step exploit chain using over-permissioned roles, secrets discovery, and NHIs to attack a popular low-code service.

North Korea-linked hackers have upgraded the InvisibleFerret malware to bypass script-based security tools, converting its Python code into compiled modules that are harder for defenders to inspect ...

The Agent Governance Toolkit brings runtime policy enforcement to autonomous agents, targeting the OWASP top 10 agent risks.

Perplexity launches Bumblebee: How its new read-only dev scanner differs from Chainguard ...

EU moves forward on $5.8B scale-up fund to keep startups from leaving The initiative is part of a broader EU push to build up the domestic tech sector and address a long-standing shortage of ...

A coordinated malware campaign known as TrapDoor has hit software ecosystems widely used by crypto and blockchain developers.

GlassWorm poisoned 300 GitHub repositories since 2025, enabling supply chain attacks against developers and organizations.