AI-created VS Code malware and fake npm packages reveal how attackers exploit open-source trust.
Cybersecurity researchers have flagged a malicious Visual Studio Code (VS Code) extension with basic ransomware capabilities that appears to be created with the help of artificial intelligence – in other words, vibe-coded.
Secure Annex researcher Joh... [4542 chars]