InfoWorld

Open VSX extensions hijacked: GlassWorm malware spreads via dependency abuse

Threat actors are publishing clean extensions that later update to depend on hidden payload packages, bypassing marketplace ...
The Hacker News

GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers

GlassWorm campaign used 72 malicious Open VSX extensions and infected 151 GitHub repositories, enabling stealth supply-chain attacks on developers.
Android Police

Firefox is giving Android users a sneak peek at its open extensions

Jay primarily writes news and deals posts for Android Police. Before joining AP, he spent the past several years yammering on about the crazy world of Android for various tech outlets. Besides ...