Skip to content

News
Cybercrime
Risk
Policy
Privacy
Research
Cloud
Insurance

LinkedIn
Facebook

Secure Annex

Glassworm malware returns with 24 malicious VS Code packages on OpenVSX and Microsoft marketplace

Cybercrime, News, Research, Vendors, Vulnerabilities

December 2, 2025

The Glassworm malware has returned in a third wave with 24 malicious VS Code extension packages on OpenVSX and the Microsoft Visual Studio Marketplace, using obfuscation and Rust‑based implants to steal credentials, deploy proxies and enable remote access.
Malicious Open VSX extension delivers SleepyDuck RAT and uses Ethereum contract for fallback control

Cybercrime, News, Research, Risk, Vulnerabilities

November 4, 2025

Researchers warned that a malicious Open VSX extension, juan-bianco.solidity-vlang, installs a SleepyDuck remote access trojan that uses an Ethereum smart contract and a fallback RPC mechanism to update its command-and-control details.

About
Editorial Policy
Privacy
Contact