North Korean job scammers target JavaScript and Python developers with fake interview tasks spreading malware

Operation Dream Job is evolving once again, and now comes through malicious dependencies on bare-bones projects.
InfoWorld

Flaws in four popular VS Code extensions left 128 million installs open to attack

Three of the four vulnerabilities remained unpatched months after OX Security reported them to the maintainers.

Flaws in popular VSCode extensions expose developers to attacks

Vulnerabilities with high to critical severity ratings affecting popular Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times could be exploited to steal local ...

Will You 'Vibe Code' Cybersecurity Software?

AI software continues to increase in capability. We saw the virality of what is now referenced as OpenClaw in contextualizing ...
Infosecurity Magazine

Flaws in Popular Software Development App Extensions Allow Data Exfiltration

Four serious new vulnerabilities affect Microsoft Visual Studio Code, Cursor and Windsurf extensions, three of which remain ...

Opinion: Moltbook’s ‘vibe-coded’ breach is the future of security failures

Earlier this month, the now viral social network Moltbook exposed 1.5 million API authentication tokens and 35,000 email ...
SecurityWeek

Cyber Insights 2026: The Ongoing Fight to Secure Industrial Control Systems

Expert insights on the security challenges facing ICS, including legacy infrastructure risks, nation-state threats, ransomware, AI, and strategies to build long-term resilience.