The Hacker News

GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers

GlassWorm campaign used 72 malicious Open VSX extensions and infected 151 GitHub repositories, enabling stealth supply-chain attacks on developers.
Windows Report

Visual Studio Code Update Brings End-to-End Web Debugging and AI Control

Visual Studio Code 1.112 introduces in-editor web app debugging, Copilot Autopilot mode, and improved AI workflows for developers.
InfoWorld

Open VSX extensions hijacked: GlassWorm malware spreads via dependency abuse

Threat actors are publishing clean extensions that later update to depend on hidden payload packages, bypassing marketplace ...

GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...
dbta

News Flashes

Panzura is launching the latest release of the Panzura CloudFS hybrid cloud file platform—offering capabilities that lower both infrastructure and management costs as firms scale across offices, ...