Security News Malicious AI extensions on VSCode Marketplace steal developer data BleepingComputer Daniel Bender 23 Jan 2026 Two malicious extensions in Microsoft's Visual Studio Code (VSCode) Marketplace that were collectively installed 1.5 million times, exfiltrate developer data to China-based servers.
