TECH NEWS

VS Code Vulnerability Allows One-Click GitHub Token Theft

A security researcher has disclosed details of a severe Visual Studio Code (VS Code) vulnerability that can be exploited to steal a user’s GitHub token and access their repositories.

The vulnerability in Microsoft’s popular code editor was discovered by Ammar Askar, who decided to make the technical details and a PoC exploit public without notifying the tech giant in advance.

The researcher described a previous “horrible experience” when reporting a VS Code vulnerability, which Microsoft patched silently without giving him any credit.

Askar made his new findings public on June 2, one hour after giving a heads-up to someone on the security team of GitHub, which Microsoft owns.

While the vulnerability was disclosed as a zero-day, Microsoft rolled out a fix on June 3.

Exploitation of this one-click security hole involves an attacker creating a specially crafted Jupyter notebook. When someone opens it on github.dev, a lightweight version of VS...

Copyright of this story solely belongs to securityweek.com. To see the full text click HERE

https://techcrunch.com/wp-content/uploads/2026/06/GettyImages-2182705840.jpeg?resize=1200,800

Paris-based Kyber, which develops a low-latency remote device control SDK and is founded by VLC lead developer Jean-Baptiste Kempf, raised $5M led by Lightspeed

Sponsor Posts Fast, affordable law for startups — Soxton automates startup legal so founders can move faster and sleep better. We handle incorporation, advisor, employment and commercial contracts. Join the waitlist for early access! Accelerate AI Adoption at F5's AI Virtual Summit — Learn how to architect, secure, and scale

https://images.ft.com/v3/image/raw/https%3A%2F%2Fd1e00ek4ebabms.cloudfront.net%2Fproduction%2F67f7de7d-7cc9-48d7-9da9-f5051e02e2bb.jpg?source=next-article&fit=scale-down&quality=highest&wi...

Sources: Bain Capital stands to make $15B+ in profits on its 2018 Kioxia buyout, a ~20x return, as Kioxia's stock has surged 5,000%+ since its December 2024 IPO

not set

© 2009-2025 Independent News Service. All rights reserved. * Site Map * Legal disclaimer * Privacy Policy * CSR Policy * RIO * RSS Copyright of this story solely belongs to indiatvnews.com. To see the full text click HERE

https://www.cnet.com/a/img/resize/4a7dc34963db8f9a51abae1ab77ec99b498be36f/hub/2024/07/25/50d61b9b-1c76-4678-9a92-f6eca531f4a8/nyt-mini-crossword-234876.jpg?auto=webp&fit=crop&height=675&w...

Today's NYT Mini Crossword Answers for Saturday, June 20

Looking for the most recent Mini Crossword answer? Click here for today's Mini Crossword hints, as well as our daily answers and hints for The New York Times Wordle, Strands, Connections and Connections: Sports Edition puzzles. Need some help with today's Mini Crossword? It's

Read more

Paris-based Kyber, which develops a low-latency remote device control SDK and is founded by VLC lead developer Jean-Baptiste Kempf, raised $5M led by Lightspeed

Sources: Bain Capital stands to make $15B+ in profits on its 2018 Kioxia buyout, a ~20x return, as Kioxia's stock has surged 5,000%+ since its December 2024 IPO

not set

Today's NYT Mini Crossword Answers for Saturday, June 20