Major Incidents or Breaches

  • The GlassWorm malware campaign has resurfaced on the OpenVSX marketplace with three new malicious Visual Studio Code extensions. These extensions have already been downloaded over 10,000 times. The campaign previously targeted both OpenVSX and Visual Studio Code marketplaces last month.

Newly Discovered Vulnerabilities

  • Microsoft has disclosed a new side-channel attack named ‘Whisper Leak’ targeting remote AI language models. The attack enables passive adversaries monitoring encrypted network traffic to infer chat topics discussed with AI models, potentially exposing sensitive information despite encryption.

Trends, Tools, or Tactics of Interest

  • The GlassWorm campaign demonstrates ongoing abuse of third-party code extension marketplaces, specifically targeting developer environments through trojanised Visual Studio Code extensions distributed via OpenVSX.

Regulatory or Policy Developments Affecting the Security Industry

  • Microsoft has reminded users still operating Windows 10 that they should enroll in the Extended Security Updates (ESU) programme, as official support has ended and the first Patch Tuesday since end-of-support is imminent. This programme is necessary to continue receiving security updates.
  • OpenAI is preparing to publicly release the GPT-5.1 family of AI models, including GPT-5.1, GPT-5.1 Reasoning, and GPT-5.1 Pro, the latter of which will be available via a $200 monthly subscription.