DarkReading-Daily Edition

"GlassWorm malware returns to shatter developer ecosystems."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 04 February 2026, 1542 UTC.

Content and Source:  "DarkReading-Daily Edition."

 https://mail.google.com/mail/u/0/#inbox/FMfcgzQfBkHqvlJqCtgdVlCGcBZBjRJM

URL--https://www.darkreading.com.

Please check email link, URL, or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Feb.​ 4,​ 2026 View in browser Daily Edition Today’s news and analysis for cybersecurity professionals NOTE FROM THE EDITOR-IN-CHIEF Dark Reading has expanded its DR Global coverage beyond the Middle East & Africa and Asia-Pacific with the launch of a brand-new section devoted to cybersecurity news in Latin America. Catch all the coverage here, and read more about all of our plans to better serve the needs of this important region in this commentary. Let us know what you think by contacting us at editors@darkreading.com. Thank you for your continued loyal readership. Kelly Jackson Higgins Editor-in-Chief, Dark Reading Email GlassWorm Malware Returns to Shatter Developer Ecosystems The self-replicating malware has poisoned a fresh set of Open VSX software components, leaving potential downstream victims with infostealer infections. Big Breach or Smooth Sailing? Mexican Gov’t Faces Leak Allegations [From DR GLOBAL]: A hacktivist group claims a 2.3-terabyte data breach exposes the information of 36 million Mexicans, but no sensitive accounts are at risk, says government. Google Looker Bugs Allow Cross-Tenant RCE, Data Exfil Attackers could even have used one vulnerable Lookout user to gain access to other GCP tenants' environments. Sponsored Content by Recorded Future, Inc. Your Second-Biggest Threat? Your Own Workflows Security teams face two adversaries: threat actors and their own manual workflows. Learn how bottlenecks slow response times and what to do about it. Russian Hackers Weaponize Microsoft Office Bug in Just 3 Days APT28's attacks rely on specially crafted Microsoft Rich Text Format (RTF) documents to kick off a multistage infection chain to deliver malicious payloads. 8-Minute Access: AI Accelerates Breach of AWS Environment The AI-assisted attack, which started with exposed credentials from public S3 buckets, rapidly achieved administrative privilges. AI May Supplant Pen Testers, But Oversight & Trust Are Not There Yet [From DR TECHNOLOGY]: Crowdsourced bug bounties and pen-testing firms see AI agents stealing the low-hanging vulnerabilities from their human counterparts. Oversight remains key. Dark Patterns Undermine Security, One Click at a Time [From THE EDGE]: People trust organizations to do the right thing, but some websites and apps have user interfaces that ultimately lead to inadequate security.  Read more → Commentary Extra Extra! Announcing DR Global: Latin America Dark Reading has something new hitting the newsstand: a content section purpose-built for Latin American readers, featuring news, analysis, features, and multimedia. How Can CISOs Respond to Ransomware Getting More Violent? Ask The Experts: Ransomware defense requires focusing on business resilience. This means patching issues promptly, improving user education, and deploying multi-factor authentication. More commentary → Elsewhere in cyber Cybersecurity Dive National cyber director solicits industry help in fixing regulations, threat information-sharing LevelBlue The Godfather of Ransomware? Inside DragonForce’s Cartel Ambitions Coveware Nitrogen Ransomware: ESXi malware has a bug! Send us a news tip →