thehackernews.com·Apr 10, 2026
Cybersecurity researchers have identified a new evolution of the GlassWorm campaign, utilizing a Zig dropper to stealthily infect integrated development environments (IDEs) through a deceptive Open VSX extension named "specstudio.code-wakatime-activity-tracker," which pretends to be WakaTime.
The key insight for you is the emergence of the Zig dropper within the GlassWorm campaign, which targets IDEs through a malicious Open VSX extension. This highlights the need for enhanced monitoring of development environments and the vetting of extensions, as they can be vectors for stealthy infections that compromise software supply chains.