Hackers have compromised Docker images, VSCode and Open VSX extensions for the Checkmarx KICS analysis tool to harvest ...

VS Code extensions since Dec 21, 2025 fuel GlassWorm v2, installing cross-IDE malware and stealing credentials.

Malicious KICS Docker tags and VS Code versions 1.17.0, 1.19.0 enabled data exfiltration, risking exposed infrastructure ...

Meta's new AI training tool is creating unrest internally as employees react to being monitored through keystrokes and screen ...

IntroductionOn March 12, 2026, Zscaler ThreatLabz discovered a malicious ZIP archive containing military-themed document lures targeting Chinese-speaking individuals. Our analysis of this sample ...

Kate is what Notepad++ wishes it could be ...

A new wave of the Glassworm campaign is targeting the OpenVSX ecosystem with 73 "sleeper" extensions that turn malicious ...

Meta deploys keystroke-tracking software on US employees' computers, sparking privacy concerns and internal backlash.

Breakdown of the Trivy GitHub Actions attack, including workflow misconfigurations, token theft, and supply chain exposure.

We knew Apple would let people hook Siri into the chatbot of their choice. But the latest installment of Mark Gurman’s Power On hints at something bigger. The company is “opening Siri and Apple ...

With the help of this plug-in, you can create bookmarks or timestamps from a media file. Simply capture all of your best moments in a video and jump back to them at any time. You no longer need to ...