GlassWorm goes native: New Zig dropper infects every IDE on your machine
GlassWorm deploys a Zig-based native dropper hidden within a fake extension, silently compromising VS Code, Cursor, VSCodium, and other IDEs. Category: Vulnerabilities & Threats
Read the full articleYou might also wanna read
GlassWorm: First Self-Propagating Worm Targets VS Code Extensions with Invisible Code
A month after Shai Hulud became the first self-propagating worm in the npm ecosystem, we just discovered the world's first worm targeting VS
Glassworm Malware Campaign Targets Developers via npm, PyPI, OpenVSX, and GitHub
A dangerous malware campaign known as Glassworm has been spreading through the tools that software developers trust most every day. By abusi
cybersecuritynews.com·1mo agoGlassworm Threat Actor Returns with Unicode-Based Supply Chain Attacks on GitHub, npm, and VS Code
The Glassworm supply chain attack is back. Researchers uncovered malware hidden in invisible Unicode characters across 150+ GitHub repositor
aikido.dev·3mo agoGlassworm Threat Actor Returns with Unicode-Based Supply Chain Attacks on GitHub, npm, and VS Code
The Glassworm supply chain attack is back. Researchers uncovered malware hidden in invisible Unicode characters across 150+ GitHub repositor
aikido.dev·3mo agoUnderstanding Zig 0.15's New IO Interface: Challenges and Implementation Difficulties
Karl Seguin's Blog - A mix of coding and creative writing
GlassWASM: Trojanized VS Code Extensions on Open VSX Deliver WebAssembly Malware via Solana Blockchain
Socket’s Threat Research team uncovered trojanized Open VSX Visual Studio Code extensions that delivered a TinyGo-compiled WebAssembly paylo
hendryadrian.com·24d ago
Comments
Sign in to join the conversation.
No comments yet. Be the first.