Sponsor of the Day:
Jerkmate
https://www.aikido.dev/blog/glassworm-returns-unicode-attack-github-npm-vscode
Glassworm Returns: Invisible Unicode Malware Found in 150+ GitHub Repositories
Mar 17, 2026 - The Glassworm supply chain attack is back. Researchers uncovered malware hidden in invisible Unicode characters across 150+ GitHub repositories, plus npm...
malware foundgithub repositoriesglasswormreturnsinvisible
https://vicone.com/blog/glassworm-when-invisible-code-exposes-gaps-in-software-supply-chain-security
GlassWorm: When Invisible Code Exposes Gaps in Software Supply Chain Security - VicOne
With invisible code, decentralized infrastructure, and self-propagation, GlassWorm reveals critical gaps in modern software supply chain defenses — and raises...
software supply chainexposes gapsglassworminvisiblecode
https://www.infoworld.com/article/4164656/more-fake-extensions-linked-to-glassworm-found-in-open-vsx-code-marketplace-2.html
More fake extensions linked to GlassWorm found in Open VSX code marketplace | InfoWorld
Apr 28, 2026 - 73 new phony extensions added this month, say researchers at Socket, as the supply chain attacks continue.
open vsxcode marketplacefakeextensionslinked
https://thehackernews.com/2026/03/glassworm-attack-uses-stolen-github.html
GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos
GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to supply-chain compromise.
attack usesgithub tokensforce pushglasswormstolen
https://hothardware.com/news/glassworm-malware-pivots-windows-to-mac
Nasty GlassWorm Malware Pivots From Windows To Target Mac Users | HotHardware
Jan 2, 2026 - The GlassWorm malware is an ever evolving threat, which is now targeting macOS in addition to Windows.
mac usersnastyglasswormmalwarepivots
https://www.aikido.dev/blog/glassworm-strikes-react-packages-phone-numbers
Glassworm Strikes Popular React Native Phone Number Packages in a New Supply Chain Attack
Mar 18, 2026 - Aikido Security researchers recovered and decrypted the full payload chain from two malicious React Native packages. Here's what the malware does and what to...
new supply chainreact nativephone numberglasswormstrikes
https://www.aikido.dev/blog/glassworm-zig-dropper-infects-every-ide-on-your-machine
GlassWorm goes native: New Zig dropper infects every IDE on your machine
Apr 21, 2026 - GlassWorm deploys a Zig-based native dropper hidden within a fake extension, silently compromising VS Code, Cursor, VSCodium, and other IDEs.
goes nativeglasswormnewzigdropper