https://thehackernews.com/2026/04/researchers-uncover-73-fake-vs-code.html
Researchers Uncover 73 Fake VS Code Extensions Delivering GlassWorm v2 Malware
73 cloned VS Code extensions since Dec 21, 2025 fuel GlassWorm v2, installing cross-IDE malware and stealing credentials.
vs code extensionsresearchersuncover73fake
https://hackaday.com/tag/glassworm/
GlassWorm | Hackaday
glasswormhackaday
https://thehackernews.com/2026/03/glassworm-attack-uses-stolen-github.html?version=meter+at+null
GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos
GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to supply-chain compromise.
https://snyk.io/es/articles/defending-against-glassworm/
Defending Against Glassworm: The Invisible Malware That's Rewriting Supply Chain Security | Snyk
Defend against Glassworm, the invisible malware rewriting supply chain security. Learn how anti-trojan-source detects and prevents these Unicode attacks,...
https://thehackernews.com/2026/04/glassworm-campaign-uses-zig-dropper-to.html
GlassWorm Campaign Uses Zig Dropper to Infect Multiple Developer IDEs
GlassWorm uses a fake WakaTime VS Code extension to infect IDEs, deploy RATs, and steal data, prompting urgent credential rotation.
glasswormcampaignuseszigdropper
https://thehackernews.com/2026/04/glassworm-campaign-uses-zig-dropper-to.html?ref=blog.hunterstrategy.net
GlassWorm Campaign Uses Zig Dropper to Infect Multiple Developer IDEs
GlassWorm uses a fake WakaTime VS Code extension to infect IDEs, deploy RATs, and steal data, prompting urgent credential rotation.
glasswormcampaignuseszigdropper
https://thehackernews.com/2026/03/glassworm-supply-chain-attack-abuses-72.html?ref=blog.netmanageit.com
GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers
GlassWorm campaign used 72 malicious Open VSX extensions and infected 151 GitHub repositories, enabling stealth supply-chain attacks on developers.
supply chain attack
https://securityaffairs.com/190638/malware/glassworm-evolves-with-zig-dropper-to-infect-multiple-developer-tools.html
GlassWorm evolves with Zig dropper to infect multiple developer tools
Apr 11, 2026 - The GlassWorm campaign uses a Zig-based dropper hidden in a fake IDE extension to infect developer tools and compromise systems.
glasswormevolveszigdropperinfect