AttackFeed by Joe Wagner | GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers  - The Hacker News

GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers  – The Hacker News

Posted on By [email protected] (The Hacker News)
Attack Feeds

Cybersecurity researchers have flagged a new iteration of the GlassWorm campaign that they say represents a “significant escalation” in how it propagates through the Open VSX registry.
“Instead of requiring every malicious listing to embed the loader directly, the threat actor is now abusing extensionPack and extensionDependencies to turn initially standalone-looking extensions into transitive  –

Read More  – The Hacker News 

You may also like

AttackFeed by Joe Wagner | Microsoft Patches Entra ID Role Flaw That Enabled Service Principal Takeover  - The Hacker News
Attack Feeds
Microsoft Patches Entra ID Role Flaw That Enabled Service Principal Takeover  – The Hacker News
April 28, 2026
AttackFeed by Joe Wagner | Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet  - The Hacker News
Attack Feeds
Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet  – The Hacker News
April 18, 2026
AttackFeed by Joe Wagner | Anthropic Releases Claude Fable 5, Its Most Powerful AI Yet, With Cyber Safeguards  - The Hacker News
Attack Feeds
Anthropic Releases Claude Fable 5, Its Most Powerful AI Yet, With Cyber Safeguards  – The Hacker News
June 10, 2026
AttackFeed by Joe Wagner | Microsoft Patches CVE-2026-26119 Privilege Escalation in Windows Admin Center  - The Hacker News
Attack Feeds
Microsoft Patches CVE-2026-26119 Privilege Escalation in Windows Admin Center  – The Hacker News
February 19, 2026