GlassWorm campaign used 72 malicious Open VSX extensions and infected 151 GitHub repositories, enabling stealth supply-chain attacks on developers.

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.

The post Critical Gemini Vulnerability on Chrome Browser Lets Malicious Extensions Spy on Users appeared first on Android ...