GlassWorm malware returns on OpenVSX with 3 new VSCode extensions

The GlassWorm malware campaign, which impacted the OpenVSX and Visual Studio Code marketplaces last month, has returned with ...
SecurityWeek

GlassWorm Malware Returns to Open VSX, Emerges on GitHub

The GlassWorm malware has reared its ugly head again in the Open VSX registry, roughly two weeks after being removed.

Open VSX rotates tokens used in supply-chain malware attack

The Open VSX registry rotated access tokens after they were accidentally leaked by developers in public repositories and allowed threat actors to publish malicious extensions in an attempted ...
The Hacker News

Vibe-Coded Malicious VS Code Extension Found with Built-In Ransomware Capabilities

Cybersecurity researchers have flagged a malicious Visual Studio Code (VS Code) extension with basic ransomware capabilities ...
How-To Geek on MSN

GitHub Is Making Open-Source Projects More Secure

Normally, when you upload a project to GitHub you're free to make revisions to that code at any time. In many cases, that ...

GitHub's new Agent HQ gives devs a command center for all their AI tools - why this is a huge deal

GitHub just brought Codex, Claude, and Jules together in one agentic development platform. Here's how it works and why it matters.