{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreifuanjpqjk7x5zuq4fz6ntuuww3v7a3oiu3iylq5pemz2e6ibyvxy",
    "uri": "at://did:plc:6wtxqaikjf62unmnajbfbq5v/app.bsky.feed.post/3mj5yafimv732"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreih2b3gcxv2nrlu72c2nf3o4ijae4dicjubqcmlei5e2qp5paejn4m"
    },
    "mimeType": "image/webp",
    "size": 20050
  },
  "path": "/trojanized-openvsx-extension-spreads-glassworm-across-vs-code-cursor-and-windsurf/",
  "publishedAt": "2026-04-10T14:02:22.000Z",
  "site": "https://vpncentral.com",
  "tags": [
    "News",
    "Trojanized OpenVSX extension spreads GlassWorm across VS Code, Cursor, and Windsurf",
    "VPN Central"
  ],
  "textContent": "A fake OpenVSX extension that impersonates WakaTime can infect multiple VS Code-based editors on the same machine, not just the one where a developer installs it. Researchers at Aikido say the malicious extension, specstudio/code-wakatime-activity-tracker, bundles a native Zig-based binary that silently looks for other compatible editors and force-installs a second-stage malicious extension into them. According […]\n\nThe post Trojanized OpenVSX extension spreads GlassWorm across VS Code, Cursor, and Windsurf appeared first on VPN Central.",
  "title": "Trojanized OpenVSX extension spreads GlassWorm across VS Code, Cursor, and Windsurf"
}