SECURITYDARK READING
Fresh Wave of GlassWorm VS Code Extensions Slices Through Supply Chain
Attackers are distributing malicious VS Code extensions via Open VSX, exploiting supply chain vulnerabilities to spread self-propagating malware. The campaign involves seeding seemingly benign extensions that act as vectors for malware propagation.
Mentioned