The Hacker News

GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers

GlassWorm campaign used 72 malicious Open VSX extensions and infected 151 GitHub repositories, enabling stealth supply-chain attacks on developers.
InfoQ

AI-Powered Bot Compromises GitHub Actions Workflows Across Microsoft, DataDog, and CNCF Projects

AI-powered bot hackerbot-claw exploited GitHub Actions workflows across Microsoft, DataDog, and CNCF projects over 7 days using 5 attack techniques. Bot achieved RCE in 5 of 7 targets, stole GitHub ...
Today

Hair Extensions May Contain Chemicals Linked to Cancer and Reproductive Harm, New Study Finds

A new study published Feb. 11 in the American Chemical Society journal Environment & Health has found that synthetic and human hair extensions, popular among Black communities, contain more chemicals ...
Scientific American

Hair extensions may contain chemicals linked to cancer and reproductive issues

Dozens of hair extensions—including artificial and natural braids—may contain synthetic chemicals that are a health and environmental hazard, a new study shows. At least 12 of the 169 chemicals ...
Bleeping Computer

Malicious AI extensions on VSCode Marketplace steal developer data

Two malicious extensions in Microsoft’s Visual Studio Code (VSCode) Marketplace that were collectively installed 1.5 million times exfiltrate developer data to China-based servers. Both extensions are ...
BGR

5 Free Browser Extensions You Should Always Install First

Good browsers work well with their standard features alone. They can protect you when browsing online, autofill your login information, and manage your favorite websites with ease. Some go beyond and ...
Android Authority

Google just announced 2025’s best Chrome extensions — which ones are you using?

Google has revealed its top Chrome extensions of 2025, highlighting a shift toward AI companions that sit inside your workflow. Add-ons like Monica and Sider stole the show, allowing users to chat ...
Visual Studio Magazine

Azure Developer CLI Adds AI Agent Extension for Foundry Deployments

Microsoft introduced a new azd AI agent extension that lets developers build and deploy Microsoft Foundry agents directly from their local development environments. The update brings agent workflows ...
Upstream

US LNG developer gets regulatory green light for project extension

US regulators have approved Commonwealth LNG’s request for more time to bring its liquefied natural gas export terminal into service. Commonwealth on 2 October submitted a letter to the Federal Energy ...
Geeky Gadgets

OpenAI Codex IDE Extension : The AI Partner Every Developer Needs Right Now

Imagine a world where your code editor doesn’t just passively display your work but actively collaborates with you, anticipating your needs, offering solutions, and even tackling tedious tasks on your ...
InfoWorld

Threat actors are spreading malicious extensions via VS marketplaces

Careless developers publishing Visual Studio extensions to two open marketplaces have been including access tokens and other secrets that can be exploited by threat actors, a security vendor has found ...