Tag: malicious-extensions

GlassWorm Campaign Escalates: 72 Malicious Extensions Weaponize Open VSX Dependencies

The GlassWorm supply-chain campaign has evolved its tactics to abuse Open VSX extension dependencies, allowing attackers to distribute malware through initially benign-looking extensions. Researchers identified 72 malicious extensions using this transitive dependency technique.

Mar 15, 2026The Hacker News

supply-chainglasswormvscode

highNation-State & APT

Threat Roundup: Browser Zero-Days, Data Breaches, and Nation-State TTPs

Weekly roundup covering Chrome's first 2026 zero-day, DNS-based ClickFix variants, major data breaches, and Russian tactical adaptations.

Feb 17, 2026Security Affairs, The Record

chrome-zero-daydata-breachmalicious-extensions

🏴ShinyHunters

🇺🇸Google