VS Code extensions Archives • Information Security News

Supply Chain Fallout: LAPSUS$ Leaks 96GB of Stolen Checkmarx Data Following TeamPCP Breach

Apr 29, 2026

—

by

Checkmarx is grappling with a distressing sequel to its March security breach, as data exfiltrated from a private GitHub repository has surfaced in the possession of the LAPSUS$ collective. The organization posits that the incursion originated from a supply chain offensive involving Trivy, with initial ingress facilitated by compromised administrative credentials. According to the Checkmarx…

The Blockchain Shadow: How GlassWorm Malware Hijacked Solana to Command IDE Contagion

Mar 24, 2026

—

by

ddos

in Malware

The GlassWorm malware crusade has once again recalibrated its stratagems, mutating into a demonstrably more perilous threat. Within a mere span of days, the bombardment—orchestrated via extensions for the Open VSX developmental ecosystem—metamorphosed from a clandestine incubation into a kinetic contagion; moreover, the digital marauders have commenced the weaponization of external infrastructure to render interdiction…

Shattering the Trust: The “GlassWorm” Supply Chain Attack Hijacking Open VSX Extensions

Feb 5, 2026

—

by

ddos

in Malware

A sophisticated supply chain incursion has been documented within the Open VSX extension registry, precipitated by the illicit seizure of a developer’s credentials. Adversaries surreptitiously integrated malicious payloads into widely utilized development tools to disseminate the GlassWorm loader, an artifact engineered for the exfiltration of sensitive data and administrative identities. This incident, impacting extensions with…

Tag: VS Code extensions

Supply Chain Fallout: LAPSUS$ Leaks 96GB of Stolen Checkmarx Data Following TeamPCP Breach

The Blockchain Shadow: How GlassWorm Malware Hijacked Solana to Command IDE Contagion

Shattering the Trust: The “GlassWorm” Supply Chain Attack Hijacking Open VSX Extensions