Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
Eclipse Foundation

Eclipse Foundation Vendor Cyber Rating & Cyber Score

eclipse.org
in
Add Your Compliance Badge
ISO 27001
SOC 2 Type 1
SOC 2 Type 2
PCI DSS
HIPAA
GDPR

The Eclipse Foundation provides our global community of individuals and organizations with a mature, scalable, and business-friendly environment for open source software collaboration and innovation. The Foundation is home to the Eclipse IDE, Jakarta EE, Eclipse Software Defined Vehicle, and over 425 open source projects, including runtimes, tools, and frameworks for cloud and edge applications, IoT, AI, automotive, systems engineering, distributed ledger technologies, open processor designs, and many others. The Eclipse Foundation AISBL is an international non-profit association supported by over 350 members, including industry leaders who value open source as a key enabler for their business strategies. To learn more, follow us on


Eclipse Foundation A.I CyberSecurity Scoring

Incident Details
Eclipse Foundation
Company Information
Website:http://www.eclipse.org
Employees number:237
Number of followers:37,574
NAICS:5112
Industry Type:Software Development
Homepage:eclipse.org
Cyber Premium EstimationGet Supply Chain
Eclipse Foundation Risk Score (AI oriented)
Between 650 and 699
logo
Eclipse FoundationSoftware Development
Updated:
02/04/2026
697/1000
Weak
B
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
Eclipse Foundation Global Score (TPRM)
xxxx
logo
Eclipse FoundationSoftware Development
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

Eclipse Foundation
Eclipse FoundationWeak
Current Score
697B (WEAK)
01000
1 incidents
-62 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JUNE 2026
700Before Incident
MAY 2026
699Before Incident
APRIL 2026
698Before Incident
MARCH 2026
697Before Incident
FEBRUARY 2026
696Before Incident
JANUARY 2026
695Before Incident
DECEMBER 2025
694Before Incident
NOVEMBER 2025
754Before Incident
Breach
03 Nov 2025Eclipse Foundation
Eclipse Foundation (Open VSX Registry)

Open VSX Registry Security Incident Involving Leaked Developer Tokens and Malicious Extensions

692After Incident
HIGH-62
ECL4092940110325
The Eclipse Foundation’s Open VSX Registry suffered a security incident where developer publishing tokens were leaked in public repositories, allowing attackers to exploit them for distributing malicious extensions (e.g., GlassWorm malware). While initially misreported as a self-propagating worm, the attack relied on stolen credentials to spread, targeting developers to expand access. The incident was contained by revoking compromised tokens, removing malicious extensions, and implementing stricter token management (e.g., shorter lifetimes, automated scanning). Though threat actors inflated download metrics (e.g., 35,800 claimed downloads), the actual user impact was lower. No evidence of ongoing compromise or data exfiltration beyond credential abuse was confirmed. Collaborations with Microsoft Security Response Center (MSRC) and ecosystem partners were established to enhance threat detection and prevention.
INCIDENT DETAILS -
TYPE
credential compromisemalicious extension distributionsupply chain attack
MOTIVATION
credential theftmalware distributionsupply chain compromise
IMPACT
developer credentialspublishing tokensOpen VSX Registrydeveloper accountsOperational Impact: Temporary disruption during token revocation and malicious extension removalBrand Reputation Impact: Potential reputational harm due to malicious extensions and credential theftIdentity Theft Risk: High (developer credentials stolen)
DATA BREACH
developer credentialspublishing tokensSensitivity Of Data: High (credentials and tokens for extension publishing)
REFERENCES
Blog URLSource URL
OCTOBER 2025
754Before Incident
SEPTEMBER 2025
754Before Incident
AUGUST 2025
754Before Incident
JULY 2025
754Before Incident

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for Eclipse Foundation ?
?
What was Eclipse Foundation's A.I Rankiteo Cyber Score in May 2026 ?
?
What was Eclipse Foundation's A.I Rankiteo Cyber Score in April 2026 ?
?
What was Eclipse Foundation's A.I Rankiteo Cyber Score in March 2026 ?
?
What was Eclipse Foundation's A.I Rankiteo Cyber Score in February 2026 ?
?
What was Eclipse Foundation's A.I Rankiteo Cyber Score in January 2026 ?
?
What was Eclipse Foundation's A.I Rankiteo Cyber Score in December 2025 ?
?
What was Eclipse Foundation's A.I Rankiteo Cyber Score in November 2025 ?
?
What was Eclipse Foundation's A.I Rankiteo Cyber Score in October 2025 ?
?
What was Eclipse Foundation's A.I Rankiteo Cyber Score in September 2025 ?
?
What was Eclipse Foundation's A.I Rankiteo Cyber Score in August 2025 ?
?
What was Eclipse Foundation's A.I Rankiteo Cyber Score in July 2025 ?
?
What is the average per-incident point impact on Eclipse Foundation's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with Eclipse Foundation ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view Eclipse Foundation's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?