Self-spreading GlassWorm malware hits OpenVSX, VS Code registries

A new and ongoing supply-chain attack is targeting developers on the OpenVSX and Microsoft Visual Studio marketplaces with ...
InfoWorld

Self-propagating worm found in marketplaces for Visual Studio Code extensions

Treat this as an immediate security incident, CISOs advised; researchers say it’s one of the most sophisticated supply chain ...
The Hacker News

Self-Spreading 'GlassWorm' Infects VS Code Extensions in Widespread Supply Chain Attack

GlassWorm spread via 14 VS Code extensions; Solana + Google Calendar C2; stole credentials, drained 49 wallets.
CSO Online

Google ‘Careers’ scam lands job seekers in credential traps

The phishing campaign impersonates Google’s recruiting team with fake “Book a Call” invites, using spoofed logins and HTML ...
Pacific Daily News

Moylan says no extensions on ARP funds tied to hospital, talks mail delays plus budget cuts

There’s no appetite in Washington, D.C. to extend a Dec. 31, 2026 deadline to spend about $104 million in federal American Rescue Plan funds, according to Del. James Moylan. Moylan spoke about the ARP ...