The Hacker News

ThreatsDay Bulletin: Worm Code Leaked, AI Agent Phished, Claude Code Patch + 28 New Stories

Cybersecurity roundup: supply chain threats, AI agent risks, browser-cloning malware, mule networks, endpoint bypasses, and ...

You can now browse and install PowerToys Command Palette extensions within the app

The latest PowerToys update introduces a built‑in Extension Gallery and brings improvements to Dock, PowerDisplay, and ZoomIt ...
Tech Times

VS Code Agents Hit Stable: Air-Gapped BYOK Unlocks Enterprise AI Coding

VS Code agents are now in Stable preview, and the 1.122 update removed the GitHub OAuth requirement from BYOK, letting defense, healthcare, and finance developers run fully air-gapped AI-assisted ...
MSN on MSN

I built a fully local AI coding assistant in Windows with Ollama and VS Code

The only operating cost is electricity.

Mistral Vibe: Trying out the new agentic Work and Code interfaces

French AI manufacturer Mistral renames the user interface of its LLM models, stepping into the agentic era of AI applications. Moving away from a purely chat-focused interface towards a central ...
Virtualization Review

Hands-On Lab: Turning PowerShell Scripts into Tools Worth Sharing

Learn how to transform everyday PowerShell one-liners and batch scripts into advanced functions with validation, pipeline support and help. Understand how to organize reusable code into modules with ...
Guru3D.com

Malicious VS Code Extension Linked to Theft of 3,800 GitHub Repositories

A reported software supply chain attack involving a malicious Visual Studio Code extension has exposed the growing security risks surrounding modern development environments. According to published ...
TechRadar

GitHub confirms breach — thousands of internal repositories hit after employee installs malicious VS Code extension

GitHub confirms an employee’s compromised device led to exfiltration of internal repositories via a poisoned VSCode extension Threat actors TeamPCP are selling an archive of roughly 4,000 repos on the ...
VentureBeat

GitHub confirms 3,800 internal repos stolen through poisoned VS Code extension as supply chain worm hits Microsoft’s Python SDK

GitHub confirmed on May 20 that a poisoned VS Code extension installed on an employee’s device gave attackers access to roughly 3,800 internal repositories at the Microsoft-owned code storage and ...
Redmond Magazine

Stop Doing these 5 PowerShell Function Practices!

Create PowerShell functions only for reusable code, not unnecessary script fragmentation. Avoid over-engineering small PowerShell scripts that become difficult to read and maintain. Keep PowerShell ...