Breaking News – Cyber Threats (last 6h)
Generated: 2026-03-14 08:00 PDT
- AppsFlyer Web SDK hijacked to spread crypto-stealing JavaScript code
BleepingComputer • 2026-03-14 07:36 • www.bleepingcomputer.com
The AppsFlyer Web SDK was temporarily hijacked this week with malicious code used to steal cryptocurrency in a supply-chain attack. […]
https://www.bleepingcomputer.com/news/security/appsflyer-web-sdk-used-to-spread-crypto-stealer-javascript-code/ - GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers
The Hacker News • 2026-03-14 05:55 • thehackernews.com
Cybersecurity researchers have flagged a new iteration of the GlassWorm campaign that they say represents a “significant escalation” in how it propagates through the Open VSX registry.
“Instead of requiring every malicious listing to embed the loader directly, the threat actor is now abusing extensionPack and extensionDependencies to turn initially standalone-looking extensions into transitive
https://thehackernews.com/2026/03/glassworm-supply-chain-attack-abuses-72.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
