GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...
InfoWorld

Open VSX extensions hijacked: GlassWorm malware spreads via dependency abuse

Threat actors are publishing clean extensions that later update to depend on hidden payload packages, bypassing marketplace ...
Bleeping Computer

Flaws in popular VSCode extensions expose developers to attacks

Vulnerabilities with high to critical severity ratings affecting popular Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times could be exploited to steal local ...
The Hacker News

GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers

GlassWorm campaign used 72 malicious Open VSX extensions and infected 151 GitHub repositories, enabling stealth supply-chain ...
Hosted on MSN

Visual studio 2026 is available to download now

Visual Studio 2026 is no longer a preview or a promise, it is a shipping product that developers can install today. Microsoft is positioning this release as a generational reset for its flagship IDE, ...
Hosted on MSN

Windows 11 26H2 is coming: Meet all the new features

Windows 11 26H2 follows the model of an enablement package and is technically based on version 25H2. An enablement package is a small feature update that does not trigger a complete reinstallation of ...