Tag: Open VSX
-
Supply Chain Fallout: LAPSUS$ Leaks 96GB of Stolen Checkmarx Data Following TeamPCP Breach
Checkmarx is grappling with a distressing sequel to its March security breach, as data exfiltrated from a private GitHub repository has surfaced in the possession of the LAPSUS$ collective. The organization posits that the incursion originated from a supply chain offensive involving Trivy, with initial ingress facilitated by compromised administrative credentials. According to the Checkmarx…
-
The Blockchain Shadow: How GlassWorm Malware Hijacked Solana to Command IDE Contagion
The GlassWorm malware crusade has once again recalibrated its stratagems, mutating into a demonstrably more perilous threat. Within a mere span of days, the bombardment—orchestrated via extensions for the Open VSX developmental ecosystem—metamorphosed from a clandestine incubation into a kinetic contagion; moreover, the digital marauders have commenced the weaponization of external infrastructure to render interdiction…
-
Shattering the Trust: The “GlassWorm” Supply Chain Attack Hijacking Open VSX Extensions
A sophisticated supply chain incursion has been documented within the Open VSX extension registry, precipitated by the illicit seizure of a developer’s credentials. Adversaries surreptitiously integrated malicious payloads into widely utilized development tools to disseminate the GlassWorm loader, an artifact engineered for the exfiltration of sensitive data and administrative identities. This incident, impacting extensions with…
-
GlassWorm’s macOS Gambit: The Invisible Worm Draining Developer Wallets via Open VSX
A new wave of malicious extensions has been uncovered in the Open VSX extension marketplace, which is used by millions of developers worldwide. Researchers at Koi Security warn that attackers are seeding the catalog with seemingly “useful” plugins that, in reality, steal cryptocurrency, passwords, and other sensitive data. Notably, this latest campaign targets macOS users…
-
Token Leak: Eclipse Revokes Exposed Keys to Halt Open VSX Supply Chain Attacks
The Eclipse Foundation has revoked several compromised access tokens associated with publishing extensions to the open Open VSX repository. The investigation was prompted by a report from Wiz, a company specializing in cloud security. In early October, Wiz researchers discovered that certain Visual Studio Code extensions, hosted both in Microsoft’s official marketplace and in Open…
-
Crypto Dev Loses $500K to Fake Cursor AI Extension: A New Supply Chain Threat
A counterfeit extension for the Cursor AI development environment, masquerading as a legitimate Ethereum utility, has resulted in a major cybersecurity incident—a Russian cryptocurrency developer lost half a million dollars due to the extension’s malicious behavior. Disguised under the name “Solidity Language,” the extension was hosted on the Open VSX registry and designed solely to…
-
$500,000 Crypto Stolen: Fake AI Extension Targets Blockchain Devs via Open VSX
A Russian blockchain developer has fallen victim to a targeted attack executed through a counterfeit extension within the Cursor AI environment, resulting in the theft of approximately $500,000 worth of cryptocurrency. The incident was investigated by experts at Kaspersky Lab, who uncovered an intricate infection chain based on malicious open-source packages masquerading as legitimate tools…