Threat actors are publishing clean extensions that later update to depend on hidden payload packages, bypassing marketplace checks and silently installing malware onto developers’ systems.

CSO Online offers insights into cybersecurity, risk management, and IT leadership, providing articles, reports, and expert analysis to help security professionals navigate the evolving threat landscape and protect their organizations from cyber attacks. By exploring CSO Online's curated content, CISOs, security managers, and IT executives can learn about threat intelligence, security frameworks, and incident response strategies for building resilient cybersecurity programs. Whether you're defending against ransomware, phishing attacks, or insider threats, CSO Online offers resources to strengthen your security posture and safeguard your digital assets.

CSO Online

Threat actors are exploiting the Open VSX extension registry in a new phase of the GlassWorm supply-chain campaign. At least 72 malicious extensions have been identified since January 31, 2026. The attack works by publishing clean-looking extensions that later update to add dependencies on hidden payload packages containing the GlassWorm loader. VS Code's automatic dependency installation then silently delivers the malware. Extensions impersonate popular developer tools like ESLint, Prettier, and AI coding assistants including Claude Code and Codex. Socket researchers recommend auditing extension dependencies, monitoring updates, and restricting installs to trusted publishers. Open VSX has removed most flagged extensions, but some remain live.

Open VSX extensions hijacked: GlassWorm malware spreads via dependency abuse