Hackers are now exploiting the safety of open-source apps to sideload malware, and on LinkedIn of all places

The good news is that not clicking on unknown links avoids it entirely.
Dark Reading

DPRK Actors Deploy VS Code Tunnels for Remote Hacking

A spear-phishing campaign tied to the Democratic People's Republic of Korea (DPRK) uses trusted Microsoft infrastructure to ...

Claude Code is suddenly everywhere inside Microsoft

Microsoft first started adopting Anthropic’s Claude Sonnet 4 model inside its developer division in June last year, before ...

I tried vibe coding an app as a beginner - here's what Cursor and Replit taught me

I tried four vibe-coding tools, including Cursor and Replit, with no coding background. Here's what worked (and what didn't).
The Hacker News

North Korea-Linked Hackers Target Developers via Malicious VS Code Projects

North Korean hackers abuse Visual Studio Code task files in fake job projects to deploy backdoors, spyware, and crypto miners ...
Visual Studio Magazine

Microsoft Expands Quantum Development Kit with New Open-Source Tools, VS Code Integration

Microsoft released new open‑source quantum development tools that deepen VS Code and Copilot integration while targeting real ...

This new LinkedIn phishing scam is targeting executives

Here's what to look out for ...
SecurityWeek

Malicious Chrome Extension Crashes Browser in ClickFix Variant ‘CrashFix’

ClickFix variant CrashFix relies on a malicious Chrome extension to crash the browser and trick victims into installing the ...

WhatsApp Web malware spreads banking trojan automatically

New WhatsApp Web attack spreads self-propagating ZIP files containing Astaroth banking malware through trusted conversations.

I used one simple script to remove AI from popular browsers (including Chrome and Firefox)

Chrome, Edge, and Firefox are full of bloatware, with AI among the features most of us don't want. This free tool is your ticket back to the good old days.

Fake ad blocker extension crashes the browser for ClickFix attacks

A malvertising campaign is using a fake ad-blocking Chrome and Edge extension named NexShield that intentionally crashes the ...

Claude Code Now Steers the Web with Agent Browser : Vercel Headless CLI Helps Fix Issues

Agent Browser’s Rust binary talks to a Node daemon via JSON, so your agents get clear outputs and reliable automation steps.