GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...
The Hacker News

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...

Fake AI developer tools are distributing Amatera and AMOS malware

Hackers are using malvertising campaigns to disguise infostealers as AI tools.
MUO on MSN

Hackers are disguising malware as Claude Code, and it's easy to fall for the scam

Be careful what links you follow ...