GlassWorm malware attacks return via 73 OpenVSX "sleeper" extensions

A new wave of the Glassworm campaign is targeting the OpenVSX ecosystem with 73 "sleeper" extensions that turn malicious ...

Bitwarden CLI npm package compromised to steal developer credentials

The Bitwarden CLI was briefly compromised after attackers uploaded a malicious @bitwarden/cli package to npm containing a credential-stealing payload capable of spreading to other projects.
Hosted on MSN

New Roblox cheat scripts emerge despite anti-cheat crackdown

Multiple new cheat scripts for popular Roblox games have surfaced online in early 2026, offering automation and exploit features despite Roblox's expansion of automated anti-cheat actions. The tools ...