Socket has notified the Eclipse Foundation, which oversees the Open VSX marketplace, of the latest fraudulent additions, and Burckhardt expects that by now all 73 have been deleted.
VS Code extensions since Dec 21, 2025 fuel GlassWorm v2, installing cross-IDE malware and stealing credentials.
XDA Developers on MSN
Every AI code editor wants to replace VS Code, but the smartest ones are just extending it
Embrace VS Code instead of fighting it ...
Cryptopolitan on MSN
Hacker target the OpenVSX ecosystem to steal crypto wallets
GlassWorm, a known malware, has put 73 harmful extensions into OpenVSX's registry. Hackers use it to steal developers' crypto ...
Attackers continue to scale a campaign to seed Open VSX with seemingly benign VS Code extensions that spread self-propagating ...
A new wave of the Glassworm campaign is targeting the OpenVSX ecosystem with 73 "sleeper" extensions that turn malicious ...
How-To Geek on MSN
10 VS Code extensions I can't live without
Try these extensions and you'll wonder how you ever lived without them!
Managing multiple Claude Code projects doesn't have to be chaotic. My iTerm2 setup dramatically reduces friction in my daily AI-assisted coding workflows - here's how.
Over 70 clones of popular extensions published to the Open VSX marketplace in April are likely designed to deliver GlassWorm ...
Be careful which extensions you install in Chrome.
Malicious browser extensions disguised as TikTok downloaders compromised 130,000 users, exposing a growing blind spot in ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results