THE article discusses a supply-chain attack named GlassWorm that exploits vulnerabilities in 72 Open VSX extensions targeting developers. This malware can potentially disrupt software development processes and endanger sensitive data. It emphasizes the need for improved cybersecurity measures to protect against such threats, especially in environments where developers frequently utilize extensions and third-party tools.
GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers
Article by CyberSIXT
Timeline Coverage
Swipe to explore timeline
-
CrowdStrike and Google take down Glassworm botnet channels
infosecurity-magazine.com
-
GlassWorm Malware Takedown Shields Developer Supply Chains
thehackernews.com
-
CrowdStrike, Google shut Glassworm botnet infecting dev tools
securityaffairs.com
-
CrowdStrike, Google Disrupt GlassWorm Botnet Via Solana, Calendar
securityweek.com
-
Malicious VS Code Extensions Spread via Open VSX Marketplace
darkreading.com
-
GlassWorm malware hides in 73 cloned Open VSX extensions
-
Researchers Uncover 73 Fake VS Code Extensions Delivering GlassWorm v2 Malware
-
GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers