Glassworm malware returns in third wave of malicious VS Code packages

The Glassworm campaign, which first emerged on the OpenVSX and Microsoft Visual Studio marketplaces in October, is now in its third wave, with 24 new packages added on the two platforms.

Glassworm returns once again with a third round of VS code attacks

The Visual Studio Marketplace and the Open VSX Registry users are targeted once again with infostealing malware.
Techzine Europe

Glassworm malware reappears within VS Code ecosystem

The Glassworm campaign is proving to be more persistent than expected. After malicious extensions appeared in both the ...
heise online

Open VSX: Eclipse Foundation Draws Consequences from GlassWorm Attack

The Eclipse Foundation has addressed its latest security incident involving Open VSX – the open-source marketplace for VS Code extensions. Recently, it became known that access tokens had accidentally ...