A campaign involving 19 Visual Studio (VS) Code extensions that embed malware inside their dependency folders has been uncovered by cybersecurity researchers. Active since February 2025 but identified ...

But for the first time ever, Pantone’s color is essentially a non-color. Or you could call it every color. Pantone’s 2026 Color of the Year is a white. In Pantone language, that’s code 11-4201—aka ...

The supply chain campaign known as GlassWorm has once again reared its head, infiltrating both Microsoft Visual Studio Marketplace and Open VSX with 24 extensions impersonating popular developer tools ...

The awards, celebrating the best of the industry's color grading professionals, are now in their fifth year, with work on 'Andor,' 'The Brutalist' and a Bad Bunny music video also among those ...

Treat this as an immediate security incident, CISOs advised; researchers say it’s one of the most sophisticated supply chain attacks they’ve seen, and it’s spreading. A month after a self-propagating ...

Careless developers publishing Visual Studio extensions to two open marketplaces have been including access tokens and other secrets that can be exploited by threat actors, a security vendor has found ...

Editor's take: Microsoft has long been the financial lifeline of OpenAI, but its growing reliance on Anthropic's models suggests that loyalty may be giving way to performance. By favoring Anthropic in ...

A threat actor named WhiteCobra has been targeting VSCode, Cursor, and Windsurf users by planting 24 malicious extensions in the Visual Studio marketplace and the Open VSX registry. The campaign is ...

The 'ThemeConverterPackage' package did not load correctly. The problem may have been caused by a configuration change or by the installation of another extension. You can get more information by ...

Cybersecurity researchers have uncovered a loophole in Microsoft’s Visual Studio Code (VS Code) Marketplace that enables attackers to reuse deleted extension names, potentially allowing malware to ...