The Hacker News

One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens

VS Code flaw exposes GitHub OAuth tokens via one-click attack on GitHub.dev, enabling private repo access and token theft.

Another bug hunter leaks Microsoft exploits in defiance of company’s handling of vulnerability disclosures

Yet another aggrieved bug hunter has leaked a vulnerability affecting a Microsoft product after becoming disillusioned with ...

Microsoft unveils new AI models to lessen reliance on OpenAI and lower costs for developers

At its Build developer conference, Microsoft is announcing series of generative AI models to try and crack a market controlled by OpenAI, Anthropic and Google.

And Now I’ve Vibe-Coded a Native Windows 11 App ⭐

The Build 2026 keynote was overly-long, in keeping with tradition. But there was some good news for Windows developers too.
Morning Overview on MSN

Microsoft unveiled MAI-Code-1-Flash, its first in-house model for turning written descriptions into working source code

Developers who rely on GitHub Copilot inside Visual Studio Code now have a new option built entirely by Microsoft. The ...
PCMag on MSN

Microsoft Build 2026: Everything Microsoft is Unveiling Today Live

We're attending Microsoft's annual Build Conference in person, covering all the Windows announcements, demos, and surprises.
SecurityWeek

Exclusive: How One Line of Code Put Billions of Microsoft Android App Downloads at Risk

Six Microsoft 365 Android apps contain an identical flaw that could risk billions of downloads being compromised. The ...

Microsoft Build 2026: All the news about Windows, AI, RTX Spark, and more

Microsoft CEO Satya Nadella has started his Build developer keynote by focusing on Windows immediately. Microsoft is ...
The Next Web

One click on GitHub.dev is all it takes to hand over your private repositories

A VS Code vulnerability in GitHub.dev lets attackers steal full GitHub OAuth tokens via a single malicious link, exposing all private repositories.