Cybernews

Popular AI coding tool Blackbox AI, with 5M downloads, grants root access to hackers

BlackBox AI, a popular VS Code coding assistant, has a critical indirect prompt injection vulnerability. Hackers can exploit this to gain remote root access to a user’s computer.

OpenAI launches Codex app for Windows with multi-agent coding features

The Codex app for Windows already has over 500,000 developers in waitlist. Here's everything you need to know.
Scientific American

Hair extensions may contain chemicals linked to cancer and reproductive issues

Dozens of hair extensions—including artificial and natural braids—may contain synthetic chemicals that are a health and environmental hazard, a new study shows. At least 12 of the 169 chemicals ...
Visual Studio Magazine

Buzz About VS Code Extension for Codebase Visualization

A new VS Code extension called Nogic visualizes codebases as interactive graphs and drew strong interest on Hacker News. Commenters praised the concept for understanding large or unfamiliar codebases, ...
BGR

5 Free Browser Extensions You Should Always Install First

Good browsers work well with their standard features alone. They can protect you when browsing online, autofill your login information, and manage your favorite websites with ease. Some go beyond and ...
Macworld

I made Safari a better browser with these extensions

If Safari is your primary browser, like it is for me, it’s certainly one of the most important apps on the Mac. But did you know you can make it do more? You can ...
Bleeping Computer

Malicious crypto-stealing VSCode extensions resurface on OpenVSX

A threat actor called TigerJack is constantly targeting developers with malicious extensions published on Microsoft's Visual Code (VSCode) marketplace and OpenVSX registry to steal cryptocurrency and ...
ZDNet

Why you should delete your browser extensions right now - or do this to stay safe

Malicious browser extensions are a widespread problem. Even vetted extensions can be dangerous. Here's what you should do to avoid issues. Koi Security investigated a single malicious extension used ...
WeLiveSecurity

The hidden risks of browser extensions – and how to stay safe

What would we do without the web browser? For most of us, it’s our gateway to the digital world. But browsers are such a familiar tool today that we’re in danger of giving them a free ride. In fact, ...
TechSpot

Chrome and Edge browser extensions secretly hijacked, spied on millions of users

WTF?! Several browser extensions with a combined total of more than 2.3 million downloads were reportedly hijacking browsing sessions and tracking user activity. Many of these malicious add-ons ...
CSOonline

Verified, but vulnerable: Malicious extensions exploit IDE trust badges

Developers across popular integrated development environments (IDEs) like Visual Studio Code, Visual Studio, IntelliJ IDEA, and Cursor are at risk of running malicious extensions marked as “verified.” ...