Claude Opus commit added malicious npm dependency in Feb 2026, enabling crypto theft and persistent RAT access.
VS Code extensions since Dec 21, 2025 fuel GlassWorm v2, installing cross-IDE malware and stealing credentials.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results