Dark Reading

Python-Based Malware Slithers Into Systems via Legit VS Code

A known Chinese advanced persistent threat (APT) group known as Mustang Panda is the likely culprit behind a sophisticated, ongoing cyber-espionage campaign. It starts with a malicious email, and ...
VentureBeat

GitHub confirms 3,800 internal repos stolen through poisoned VS Code extension as supply chain worm hits Microsoft’s Python SDK

GitHub confirmed on May 20 that a poisoned VS Code extension installed on an employee’s device gave attackers access to roughly 3,800 internal repositories at the Microsoft-owned code storage and ...
Visual Studio Magazine

Data Science Pack for VS Code Bundles Python, Data and Copilot Tools

Microsoft announced a new extension pack for Visual Studio Code that bundles tools for Python development, assisted by the AI-powered GitHub Copilot and a data wrangler. The new Python Data Science ...