Malicious AI extensions on VSCode Marketplace steal developer data

Marketplace that were collectively installed 1.5 million times, exfiltrate developer data to China-based servers.
Mid-Day

AI used in one-third of newly written code in US by 2024: Analysis

By the end of 2024, around one-third of newly written blocks of computer programs in the US took support from AI systems -- ...
WinBuzzer

OpenAI Codex Lands in JetBrains IDEs with Free Credits

OpenAI Codex has arrived in JetBrains IDEs with free promotional credits. The GPT-5.2-Codex agent can autonomously debug, ...
InfoWorld

Python picks up speed with a new JIT

Python’s new JIT compiler might be the biggest speed boost we’ve seen in a while, but it’s not without bumps. Get that news and more, in this week’s report.

Claude Code is suddenly everywhere inside Microsoft

Microsoft first started adopting Anthropic’s Claude Sonnet 4 model inside its developer division in June last year, before ...

How Claude Code Is Reshaping Software—and Anthropic

WIRED spoke with Boris Cherny, head of Claude Code, about how the viral coding tool is changing the way Anthropic works.
Dark Reading

DPRK Actors Deploy VS Code Tunnels for Remote Hacking

A spear-phishing campaign tied to the Democratic People's Republic of Korea (DPRK) uses trusted Microsoft infrastructure to ...
Cybernews

Pentest tools left online are allowing hackers to exploit Fortune 500 firms

Hackers are exploiting intentionally vulnerable penetration testing and security training apps that have been mistakenly exposed to the public internet, giving them access to cloud environments ...

A new LinkedIn phishing scam is targeting executives online - make sure you don't fall for this

Business executives and IT admins are being targeted by a highly sophisticated phishing attack which doesn’t happen in the ...

The US and China Are Collaborating More Closely on AI Than You Think

WIRED analyzed more than 5,000 papers from NeurIPS using OpenAI’s Codex to understand the areas where the US and China actually work together on AI research.
Cybernews

LinkedIn DM phishing campaign targets high-value execs with weaponized file downloads

A phishing campaign targeting carefully selected “high-value” corporate employees has been using LinkedIn direct messages to deliver weaponized downloads, highlighting how criminals are shifting away ...