BackBox.org News
  • BackBox.org
  • Linux
  • Community
  • News
  • Services
  • Sitemap
  • Contact
  • Click to open the search input field Click to open the search input field Search
  • Menu Menu
GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers

GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers

March 14, 2026/in General News

Cybersecurity researchers have flagged a new iteration of the GlassWorm campaign that they say represents a “significant escalation” in how it propagates through the Open VSX registry.
“Instead of requiring every malicious listing to embed the loader directly, the threat actor is now abusing extensionPack and extensionDependencies to turn initially standalone-looking extensions into transitive

The Hacker News – ​Read More

Share this entry
  • Share on Facebook
  • Share on X
  • Share on WhatsApp
  • Share on LinkedIn
  • Share on Vk
  • Share on Reddit
  • Share by Mail
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png 0 0 admin https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png admin2026-03-14 14:06:542026-03-14 14:06:54GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers
Search Search
Copyright © BackBox.org
  • Link to X
  • Link to Facebook
  • Link to LinkedIn
  • Link to Youtube
  • Link to Telegram
Link to: ShinyHunters Claims 1 Petabyte Data Theft from Telecom Giant Telus Link to: ShinyHunters Claims 1 Petabyte Data Theft from Telecom Giant Telus ShinyHunters Claims 1 Petabyte Data Theft from Telecom Giant Telus Link to: OpenClaw AI Agent Flaws Could Enable Prompt Injection and Data Exfiltration Link to: OpenClaw AI Agent Flaws Could Enable Prompt Injection and Data Exfiltration OpenClaw AI Agent Flaws Could Enable Prompt Injection and Data ExfiltrationOpenClaw AI Agent Flaws Could Enable Prompt Injection and Data Exfiltration
Scroll to top Scroll to top Scroll to top