The Hacker News

Researchers Uncover 73 Fake VS Code Extensions Delivering GlassWorm v2 Malware

VS Code extensions since Dec 21, 2025 fuel GlassWorm v2, installing cross-IDE malware and stealing credentials.
Bleeping Computer

Device code phishing attacks surge 37x as new kits spread online

Device code phishing attacks that abuse the OAuth 2.0 Device Authorization Grant flow to hijack accounts have surged more than 37 times this year. In this type of attack, the threat actor sends a ...
Bleeping Computer

Critical Marimo pre-auth RCE flaw now under active exploitation

Hackers started exploiting a critical vulnerability in the Marimo open-source reactive Python notebook platform just 10 hours after its public disclosure. The flaw allows remote code execution without ...

MCP Dev Summit Solutions Showcase

The MCP Dev Summit featured more than 50 sponsors offering MCP and related agentic AI products for the enterprise.
Visual Studio Magazine

Hands On with OpenClaw Node for VS Code: Real Workflow, Real Friction

OpenClaw Node for VS Code really can read workspace files, apply instructions from a local skill file, and write results back through the VS Code API sandbox. On Windows, the path to that result is ...
Visual Studio Magazine

Can OpenClaw Challenge Copilot in VS Code?

A proof of concept compared OpenClaw and Copilot inside VS Code evaluating and improving the same SKILL.md file with the same prompts. OpenClaw produced broader, more redesign-oriented summaries and ...
Lablab.ai

Perplexity Computer: Stop Prompting, Start Delegating

A practical guide to Perplexity Computer: multi-model orchestration, setup and credits, prompting for outcomes, workflows, ...