Glassworm malware returns in third wave of malicious VS Code packages

The Glassworm campaign, which first emerged on the OpenVSX and Microsoft Visual Studio marketplaces in October, is now in its third wave, with 24 new packages added on the two platforms.
Analytics Insight

Top IDEs for Frontend Development in 2025

Overview: Frontend development in 2025 demands fast, intelligent tools that simplify modern code workflow with features like ...

Glassworm returns once again with a third round of VS code attacks

The Visual Studio Marketplace and the Open VSX Registry users are targeted once again with infostealing malware.

Between Speed and Sustainability: AI Agents in Software Development

Agentic Coding refers to development with AI agents, individually or in combination with several specialized agents, ...
SecurityWeek

React2Shell: In-the-Wild Exploitation Expected for Critical React Vulnerability

Critical React vulnerability tracked as CVE-2025-55182 and React2Shell can be exploited for unauthenticated remote code ...
CRN

React Server Vulnerability Is No Cause For Panic: Security Expert

A critical-severity vulnerability impacting the popular React open-source library deserves attention, but is far from the ...

Meet OpenCode, a Community-Built Agent That Trims Tokens & Costs

OpenCode adds LSP support, a metrics panel, and new session commands, so developers spot context fast and cut wasted tokens.

Awareness for Web Security: The OWASP Top Ten 2025

The first release candidate of the new OWASP Top Ten reveals the biggest security risks in web development – from ...