CSO Online

More fake extensions linked to GlassWorm found in Open VSX code marketplace

The threat actor seeding the Open VSX code marketplace with fraudulent extensions that download the GlassWorm malware has ...
The Hacker News

Researchers Uncover 73 Fake VS Code Extensions Delivering GlassWorm v2 Malware

VS Code extensions since Dec 21, 2025 fuel GlassWorm v2, installing cross-IDE malware and stealing credentials.
Infosecurity Magazine

Cursor Extension Flaw Exposes Developer API Keys

Cursor flaw lets extensions steal API keys and session tokens without user interaction, according to researchers at LayerX ...

GlassWorm malware attacks return via 73 OpenVSX "sleeper" extensions

A new wave of the Glassworm campaign is targeting the OpenVSX ecosystem with 73 "sleeper" extensions that turn malicious ...
XDA Developers on MSN

Every AI code editor wants to replace VS Code, but the smartest ones are just extending it

Embrace VS Code instead of fighting it ...
XDA Developers on MSN

I switched from VS Code's marketplace to Open VSX, and Microsoft's is the one falling behind

Truly open-source marketplace you can use with VSCodium.
Security Boulevard

Why Financial Services Leaders Are Re-Evaluating Open Source for Database Change Management

OSS can be too risky for banks and FinTechs working to meet security, governance, and compliance demands. Know the risks.
dbta

Data Center Management

CoreWeave is launching three critical capabilities that make cross-cloud AI easier and more accessible whether by network, storage, or compute—offering CoreWeave Interconnect, SUNK Anywhere, and LOTA ...