{ads}

GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers

Written By Saturday, 14 March 2026 Add Comment



March 14, 2026 at 06:25PM

Cybersecurity researchers have flagged a new iteration of the GlassWorm campaign that they say represents a "significant escalation" in how it propagates through the Open VSX registry. "Instead of requiring every malicious listing to embed the loader directly, the threat actor is now abusing extensionPack and extensionDependencies to turn initially standalone-looking extensions into transitive

from The Hacker News https://ift.tt/6voWliQ

0 Response to "GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers"

Post a Comment

Subscribe to: Post Comments (Atom)

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads