Infosecurity Magazine

Widely Used Browser Extensions Selling User Data

Dozens of widely used browser extensions have been collecting and selling user data with explicit disclosure in their privacy ...

Malicious TikTok Downloader Extensions Quietly Compromised 130K Users

Malicious browser extensions disguised as TikTok downloaders compromised 130,000 users, exposing a growing blind spot in ...
SecurityWeek

Dozens of Open VSX Extension Clones Linked to GlassWorm Malware

Over 70 clones of popular extensions published to the Open VSX marketplace in April are likely designed to deliver GlassWorm ...
Dark Reading

Fresh Wave of GlassWorm VS Code Extensions Slices Through Supply Chain

Attackers continue to scale a campaign to seed Open VSX with seemingly benign VS Code extensions that spread self-propagating ...

GlassWorm malware attacks return via 73 OpenVSX "sleeper" extensions

A new wave of the Glassworm campaign is targeting the OpenVSX ecosystem with 73 "sleeper" extensions that turn malicious ...
The Hacker News

Researchers Uncover 73 Fake VS Code Extensions Delivering GlassWorm v2 Malware

VS Code extensions since Dec 21, 2025 fuel GlassWorm v2, installing cross-IDE malware and stealing credentials.
MUO on MSN

I can use GNOME without these 5 extensions, but I really don’t want to

I'm still mad about dependency hell though.