Threat actors are publishing clean extensions that later update to depend on hidden payload packages, bypassing marketplace ...
The infamous GlassWorm malware has infected dozens more Open VSX software packages, according to new research.
Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python repositories.
XDA Developers on MSN
Google kept featuring this Chrome extension for months after it turned malicious
How can an extension change hands with no oversight?
Some results have been hidden because they may be inaccessible to you
Show inaccessible results