Hackaday

This Week In Security: The Supply Chain Has Problems

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...
TheServerSide

How to install Visual Studio Code for Java

The Java ecosystem has historically been blessed with great IDEs to work with, including NetBeans, Eclipse and IntelliJ from JetBrains. However, in recent years Microsoft's Visual Studio Code editor ...
Bitdefender

War in the Middle East Triggers Surge in Phishing and Malware Campaigns Targeting Gulf Countries

Bitdefender finds a sharp rise in phishing and malware emails targeting Gulf countries after February 28 escalation.
Security Boulevard

An Evolving GlassWorm Malware is Making the Rounds of Code Repositories

Threat researchers with various vendors for the past year have been tracking the efforts of a bad actor dubbed GlassWorm, known for dropping malicious extensions in code registries like npm, Open VSX, ...
MarketWatch

CodeHunter Wins 2026 Global InfoSec Award for Next-Gen Behavioral Malware Analysis at RSAC 2026 Conference

The MarketWatch News Department was not involved in the creation of this content. TYSONS, Va., March 23, 2026 (GLOBE NEWSWIRE) -- CodeHunter, the Zero Trust for Code security company, today announced ...
InfoWorld

New ‘StoatWaffle’ malware auto‑executes attacks on developers

The newly observed malware abuses VS Code’s “runOn:folderOpen” feature to execute automatically from trusted projects, enabling near-frictionless compromise. A newly disclosed malware strain dubbed ...
Bleeping Computer

GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, repositories, and extensions on GitHub, npm, and VSCode/OpenVSX extensions. Evidence ...
TechRepublic

Fake Claude Code Spreads Malware to Windows, macOS Users

Threat actors are exploiting a common developer habit — copying installation commands directly from websites — to distribute malware through fake software installation pages. Security researchers at ...
TechRepublic

Fake Claude Code Spreads Malware to Windows, macOS Users

Attackers are using fake Claude Code install pages and malicious search ads to spread infostealer malware targeting Windows and macOS systems. Image: Rawpixel/Envato Threat actors are exploiting a ...
Lifehacker

This Scam Impersonates the Official Claude Code Website to Spread Malware

Emily Long is a freelance writer based in Salt Lake City. After graduating from Duke University, she spent several years reporting on the federal workforce for Government Executive, a publication of ...
WeLiveSecurity

PromptSpy ushers in the era of Android threats using GenAI

ESET researchers uncovered the first known case of Android malware abusing generative AI for context-aware user interface manipulation. While machine learning has been used to similar ends already – ...