InfoWorld

New ‘StoatWaffle’ malware auto‑executes attacks on developers

The newly observed malware abuses VS Code’s “runOn:folderOpen” feature to execute automatically from trusted projects, ...
The Business Journals

Carmel Partners seeks extension for Union Market project amid financing struggles

To continue reading this content, please enable JavaScript in your browser settings and refresh this page. Preview this article 1 min The 232-unit project is part of ...
Austin American-Statesman

Austin developer avoids jail again as contempt hearing over $11.5M judgment is reset

Nate Paul, the one-time superstar Austin developer who played a central role in the impeachment of Attorney General Ken Paxton, dodged jail time again Monday. He avoided a possible trip to the Travis ...
13abc

Data center developer asks for six-month extension in Oregon

OREGON, Ohio (WTVG) - The developer of a proposed $2 billion data center told Oregon City Council members he needs a six-month extension before signing a contract with the city, according to media ...
techworm.net

GlassWorm Malware Hits macOS Through Trusted Open VSX Extensions

Cybersecurity researchers from Socket’s Threat Research team have identified a developer-compromise supply chain attack targeting macOS users, where malicious versions of popular developer extensions ...
winbuzzer.com

Malicious VS Code Extensions Steal Code from 1.5M Developers

Security researchers revealed two malicious VS Code extensions exfiltrated code snippets, API keys, and proprietary algorithms from 1.5 million developers to servers in China while masquerading as AI ...
The Hacker News

Open VSX Supply Chain Attack Used Compromised Dev Account to Spread GlassWorm

Cybersecurity researchers have disclosed details of a supply chain attack targeting the Open VSX Registry in which unidentified threat actors compromised a legitimate developer's resources to push ...
Bleeping Computer

Malicious AI extensions on VSCode Marketplace steal developer data

Two malicious extensions in Microsoft’s Visual Studio Code (VSCode) Marketplace that were collectively installed 1.5 million times exfiltrate developer data to China-based servers. Both extensions are ...
IEEE

Protect Your Secrets: Understanding and Measuring Data Exposure in VSCode Extensions

Abstract: Recent years have witnessed the emerging trend of extensions in modern Integrated Development Environments (IDEs) like Visual Studio Code (VSCode) that significantly enhance developer ...
dbta

Keeper Security Embeds Zero-Trust Secrets Management into Developer Workflows with JetBrains Extension

Keeper Security, a leading provider of zero-trust and zero-knowledge cybersecurity software, is releasing its JetBrains extension, giving JetBrains Integrated Development Environment (IDE) users a ...
TMCnet

Keeper Security Launches JetBrains Extension, Embedding Zero-Trust Secrets Management Directly Into Developer Workflows

New integration brings enterprise-grade secrets protection to JetBrains IDE, eliminating hardcoded credentials and securing the software supply chain from within CHICAGO, Jan. 7, 2026 /PRNewswire/ -- ...
Morningstar

Keeper Security Launches JetBrains Extension, Embedding Zero-Trust Secrets Management Directly Into Developer Workflows

New integration brings enterprise-grade secrets protection to JetBrains IDE, eliminating hardcoded credentials and securing the software supply chain from within Secure secrets management protects the ...