Tag: Socket
-
The Trojan Update: How “GlassWorm” Developers are Using Sleeper Extensions to Hijack Workspaces
The GlassWorm campaign has resurfaced within the developer community, though the adversaries have adopted a more surreptitious operational profile. Rather than disseminating overtly malicious extensions via OpenVSX, they initially publish innocuous facsimiles of popular utilities, only to introduce nefarious functionalities later through subsequent updates. Socket has identified 73 dubious extensions associated with this nascent wave…
-
The Trust Trap: How Fake “Critical” GitHub Alerts Are Hijacking Developer Workflows
Developers are being besieged en masse with terrifying claims of “critical vulnerabilities” directly within the hallowed halls of GitHub, yet a profoundly different motive lurks beneath these alarming admonitions. According to a dispatch from Socket, shadowy actors are disseminating fabricated alerts regarding afflictions within Visual Studio Code, thereby luring unwary patrons into the snares of…
-
The Patch Paradox: Claude Code Finds 500 Flaws, but Can the Open-Source World Survive the Noise?
Last week, Anthropic proudly unveiled its novel Claude Code Security feature—an instrument empowering security factions to unearth and remediate code vulnerabilities leveraging artificial intelligence. To demonstrate its formidable capabilities, the enterprise disclosed that its red team, employing the Claude Opus 4.6 model, successfully identified over 500 vulnerabilities within the production code of open-source endeavors. Guy…
-
The Math Malware: How “sympy-dev” Hijacked PyPI to Mine Crypto
A malicious software package masquerading as a ubiquitous library for symbolic mathematics has been identified within the official PyPI repository. Orchestrators of this campaign meticulously replicated the description of the legitimate project to present their malware as a developmental “dev” version, thereby deceiving Python developers. Beneath this artifice lies a calculated attempt to compromise systems…