Threat Advisories:
CRESCENTHARVEST an Espionage Campaign Disguised as Solidarity Fake Homebrew ClickFix Campaign Delivering Cuckoo Stealer on macOS CVE-2026-22769: UNC6201 Exploiting Dell RecoverPoint Zero-Day OysterLoader Threat Model: Silent, Signed, Systematic ClickFix to Control: Matanbuchus Campaign Deploys AstarionRAT in Minutes UNC1069’s Social Engineering Operations Focused on Crypto Sector Google Chrome CSS Use-After-Free Zero-Day Vulnerability (CVE-2026-2441) CVE-2026-1731: Active Exploitation of BeyondTrust WebSocket RCE Apple Zero-Day Exploited in Targeted Attacks (CVE-2026-20700) Microsoft’s February 2026 Patch Tuesday Fixes Active Zero-Day Exploits Critical API Flaw Puts SmarterMail Servers at Risk TGR-STA-1030: Global State-Aligned Cyber Espionage Campaign Transparent Tribe Targets India’s Startup Ecosystem with Crimson RAT Amaranth-Dragon: Low Noise, High Impact Espionage in Southeast Asia Web Traffic Hijacking via Malicious NGINX Configuration Injection DEAD#VAX: AsyncRAT Deployment via IPFS-Hosted VHD Phishing Operation Neusploit: APT28 Weaponizes CVE-2026-21509 Chrysalis Backdoor: A Quiet Passenger in Notepad++ Updates One Click to Compromise: Inside OpenClaw’s Critical RCE Flaw Attackers Hijack Open VSX Extensions to Spread GlassWorm Malware
Hive Pro recognized in Gartner® Magic Quadrant™ for Exposure Assessment Platform, 2025 Watch platform in action
Platform
Comprehensive Threat Exposure Management Platform
Uni5 Xposure PlatformUni5 Xposure leverages exposure assessment and adversarial exposure validation to deliver a unified view of your cyber risks and all actionable pathways to resolve them. Powered by:
IntegrationsOut of box integrations available with a comprehensive set of Security and IT operations tools in your organisation.
HiveForce LabsThe in-house intelligence that enables customers to identify and address immediate cyber risks and potential threats with precision, clear insights, and swift action.
Hive Pro’s ComparisonSave Cost , Reduce Complexity and Increase Security by Augmenting and Replacing your existing Vulnerability Management platform
Hive Pro vs Rapid7
Hive Pro vs Tenable
Hive Pro vs Qualys
Hive Pro vs Nucleus Security
Solutions
By Use Case
Total Attack Surface Management
Multi-Environment Security Scanners
Complete Exposure Assessment
Comprehensive Security Intelligence
Vulnerability & Threat Prioritization
Adversarial Exposure Validation
By Role
CISO
Vulnerability Management
Security Operations
DevOps
Industry
Telecommunications
Healthcare
Financial Services
Government & Public Sector
Retail & E-Commerce
Educational Institutions
Resources
Threat Advisories
Threat Digests
Blog
Whitepapers
Resources
Advisories & Digests
Threat Advisories
Threat Digests
Content Library
learn
Blog
Whitepapers
Press Releases
connect
Webinars & Videos
Company
About Us
Careers
Our Leadership
Contact Us
Book a DemoThreat Digest - Subscribe
Platform
Platform
Comprehensive Threat Exposure Management Platform
Uni5 Xposure PlatformUni5 Xposure leverages exposure assessment and adversarial exposure validation to deliver a unified view of your cyber risks and all actionable pathways to resolve them. Powered by:
IntegrationsOut of box integrations available with a comprehensive set of Security and IT operations tools in your organisation.
HiveForce LabsThe in-house intelligence that enables customers to identify and address immediate cyber risks and potential threats with precision, clear insights, and swift action.
Hive Pro’s Comparison
Hive Pro vs Rapid7
Hive Pro vs Tenable
Hive Pro vs Qualys
Hive Pro vs Nucleus Security
Solutions
Solutions
By Use Case
Total Attack Surface Management
Multi-Environment Security Scanners
Complete Exposure Assessment
Comprehensive Security Intelligence
Vulnerability & Threat Prioritization
Adversarial Exposure Validation
By Role
CISO
Vulnerability Management
Security Operations
DevOps
Industry
Industry
Telecommunications
Healthcare
Financial Services
Government & Public Sector
Retail & E-Commerce
Educational Institutions
Resources
Resources
Threat Advisories
Threat Digests
Blog
Whitepapers
Resources
Resources
Advisories & Digests
Threat Advisories
Threat Digests
Content Library
learn
Blog
Whitepapers
Press Releases
connect
Webinars & Videos
Company
Company
About Us
Careers
Our Leadership
Contact Us
Book a DemoThreat Digest - Subscribe

Attackers Hijack Open VSX Extensions to Spread GlassWorm Malware

Red | Attack Report
Download PDF

Summary

A sophisticated supply-chain attack struck the Open VSX Registry after threat actors compromised the legitimate developer account “oorzc” and used it to distribute malicious updates embedding the GlassWorm malware loader across four trusted VS Code extensions with more than 22,000 combined downloads. Once installed, the malware targets macOS systems, stealing credentials, cryptocurrency wallet information, and sensitive developer data. The attack was first detected on January 30, 2026, and affects users worldwide with the exception of Russia. The four compromised extensions are FTP/SFTP/SSH Sync Tool, I18n Tools, vscode mindmap, and scss to css. GlassWorm employs advanced evasion techniques including AES-256-CBC encryption, EtherHiding via Solana blockchain transaction memos for command-and-control resolution, and Russian locale avoidance, indicating likely Russian-speaking threat actor attribution.

Attack Details

Compromise of Trusted Developer Account and Extension Distribution

A trusted software supply channel was quietly turned into a malware delivery mechanism on January 30, 2026, after attackers compromised the publishing credentials of a legitimate Open VSX developer known as “oorzc.” Leveraging this access, they released poisoned updates for four popular extensions—FTP/SFTP/SSH Sync Tool, I18n Tools, vscode mindmap, and scss to css. Since these extensions had been widely used for more than two years and accumulated over 22,000 downloads, the malicious updates spread through an already trusted ecosystem, bypassing common detection triggers such as typosquatting or fake developer accounts.

Advanced Evasion Through Encryption and Blockchain-Based C2

The malicious updates embedded nearly identical loaders inside extension code, where an AES-256-CBC encrypted payload was decrypted at runtime and executed through eval(). The loader also profiled system environments and deliberately avoided running on systems configured with Russian-language locales, a tactic often associated with campaigns tied to Russian-speaking threat actors. To further evade detection, the attackers employed EtherHiding techniques, using Solana blockchain transaction memos to dynamically resolve command-and-control infrastructure without needing to update the compromised extensions again.

macOS Persistence and Comprehensive Data Theft

Once executed, the GlassWorm malware established persistence on macOS systems using a LaunchAgent mechanism, ensuring automatic execution at login. It then began collecting sensitive information, including browser credentials, cookies, browsing history, cryptocurrency wallet data from both browser extensions and desktop wallet applications, iCloud Keychain contents, Apple Notes databases, Safari cookies, and files stored in common user directories. VPN configuration data was also targeted, expanding the scope of potential access.

Multi-Layered Command-and-Control and Developer Credential Exfiltration

The harvested data was transmitted to attacker-controlled infrastructure while communications relied on a resilient, multi-layered command-and-control structure combining direct IP connections, blockchain-based dead drops, and backup communication channels through Google Calendar events. Of particular concern is the theft of developer and cloud credentials, such as npm tokens, GitHub authentication artifacts, and SSH or AWS keys, which could enable attackers to infiltrate enterprise environments, move laterally across networks, and potentially compromise additional software packages in a cascading supply-chain attack.

Recommendations

Audit Installed Extensions

Immediately scan all development environments to identify and remove any installed extensions from the compromised author “oorzc” and verify extension integrity across all developer workstations.

Investigate Network Logs

Review network logs for indicators of the GlassWorm loader including connections, and verify that no unauthorized data exfiltration has occurred from development systems.

Rotate Credentials

Any systems that had the compromised extensions installed should undergo full credential rotation including npm tokens, GitHub credentials, SSH keys, AWS credentials, and any stored authentication material.

Enable MFA for Developer Accounts

Enforce multi-factor authentication for all developer accounts on Open VSX, VS Code Marketplace, npm, GitHub, and other publishing platforms to prevent credential-based account takeovers.

Restrict Marketplace Access

Evaluate and restrict access to extension marketplaces where possible, implementing allow-lists for approved extensions and limiting auto-update functionality on developer machines.

Review LaunchAgent Persistence

On macOS systems, regularly audit LaunchAgent configurations for unauthorized persistence mechanisms that may indicate GlassWorm or similar malware infections.

MITRE ATT&CK TTPs

Initial Access

  • T1195: Supply Chain Compromise
    • T1195.002: Compromise Software Supply Chain

Execution

  • T1059: Command and Scripting Interpreter
    • T1059.007: JavaScript

Persistence

  • T1543: Create or Modify System Process
    • T1543.001: Launch Agent

Defense Evasion

  • T1027: Obfuscated Files or Information
    • T1027.013: Encrypted/Encoded File
  • T1140: Deobfuscate/Decode Files or Information

Credential Access

  • T1555: Credentials from Password Stores
    • T1555.001: Keychain
    • T1555.003: Credentials from Web Browsers
  • T1552: Unsecured Credentials
  • T1539: Steal Web Session Cookie

Collection

  • T1005: Data from Local System
  • T1560: Archive Collected Data

Command and Control

  • T1102: Web Service

Exfiltration

  • T1041: Exfiltration Over C2 Channel

Discovery

  • T1083: File and Directory Discovery
  • T1614: System Location Discovery
    • T1614.001: System Language Discovery

Indicators of Compromise (IOCs)

Compromised Open VSX Extensions:

  • oorzc.ssh-tools
  • oorzc.i18n-tools-plus
  • oorzc.mind-map
  • oorzc.scss-to-css-compile

Additional Malicious Extensions (17 total):

  • Angular-studio.ng-angular-extension
  • awesome-codebase.codebase-dart-pro
  • cudra-production.vsce-prettier-pro
  • dev-studio-sense.php-comp-tools-vscode
  • ko-zu-gun-studio.synchronization-settings-vscode
  • littensy-studio.magical-icons
  • pretty-studio-advisor.prettyxml-formatter
  • sol-studio.solidity-extension
  • studio-jjalaire-team.professional-quarto-extension
  • studio-velte-distributor.pro-svelte-extension
  • sun-shine-studio.shiny-extension-for-vscode
  • tucyzirille-studio.angular-pro-tools-extension
  • vce-brendan-studio-eich.js-debuger-vscode

Solana Address: BjVeAjPrSKFiingBn4vZvghsGj9KCE8AJVtbc9S8o8SC

AES Encryption Details:

  • Key: wDO6YyTm6DL0T0zJ0SXhUql5Mo0pdlSz
  • IV (hex): c4b9a3773e9dced6015a670855fd32b

Command-and-Control IP: 45.32.150.251

References

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox