GlassWorm malware returns on OpenVSX with 3 new VSCode extensions

The GlassWorm malware campaign, which impacted the OpenVSX and Visual Studio Code marketplaces last month, has returned with ...

Fake Solidity VSCode extension on Open VSX backdoors developers

A remote access trojan dubbed SleepyDuck, and disguised as the well-known Solidity extension in the Open VSX open-source registry, uses an Ethereum smart contract to establish a communication channel ...
Hosted on MSN

Hidden debug code returns from the dead as TP-Link routers face a wave of new critical root access flaws

CVE-2025-7851 stems from residual debug code left in patched firmware CVE-2025-7850 enables command injection through the WireGuard VPN interface Exploiting one vulnerability made the other easier to ...