SecurityWeek

ForceMemo: Python Repositories Compromised in GlassWorm Aftermath

Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python repositories.
InfoWorld

Open VSX extensions hijacked: GlassWorm malware spreads via dependency abuse

Threat actors are publishing clean extensions that later update to depend on hidden payload packages, bypassing marketplace ...
Decrypt

You Can Control an AI Agent's Crypto Spending With Ledger Hardware Wallets and MoonPay

The Ledger hardware wallet integration lets users approve AI-driven crypto transactions on-device while keeping private keys ...