InfoWorld

Self-propagating worm found in marketplaces for Visual Studio Code extensions

Treat this as an immediate security incident, CISOs advised; researchers say it’s one of the most sophisticated supply chain ...
The Hacker News

Self-Spreading 'GlassWorm' Infects VS Code Extensions in Widespread Supply Chain Attack

GlassWorm spread via 14 VS Code extensions; Solana + Google Calendar C2; stole credentials, drained 49 wallets.
CSO Online

Threat actors are spreading malicious extensions via VS marketplaces

There isn’t a consistent threat model for extension marketplaces yet, McCarthy said, making it difficult for any platform to ...

Google AI Studio Brings 'Vibe Coding': App Creation for Everyone

Google's updated AI Studio brings "Vibe Coding," a workflow that allows users to build and deploy AI apps using natural ...

Google's new vibe coding AI Studio experience lets anyone build, deploy apps live in minutes

The updated Build tab serves as the entry point to vibe coding. It introduces a new layout and workflow where users can select from Google’s suite of AI models and features to power their applications ...

Google embraces vibe coding with latest version of AI Studio app development platform

Google LLC said today it’s bringing a “vibe coding” experience into its AI Studio platform to facilitate easier application ...
The Hacker News

ThreatsDay Bulletin: $176M Crypto Fine, Hacking Formula 1, Chromium Vulns, AI Hijack & More

Cybercrime crackdowns, AI security flaws, and major breaches — from $176M fines to Starlink, F1, and Google’s new threat ...
CSO Online

Serious vulnerability found in Rust library

Researchers at Edera say they have uncovered a critical boundary-parsing bug, dubbed TARmageddon ( CVE-2025-62518 ), in the popular async-tar Rust library. And not only is it in this library, but also ...