#glassworm — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #glassworm, aggregated by home.social.
-
This Week in Security: Ubiquiti Fixes, and FreeBSD Joins the Club you Don’t Want to Join
-
This Week in Security: Ubiquiti Fixes, and FreeBSD Joins the Club you Don’t Want to Join
-
#Glassworm #botnet disrupted after resilient C2 infrastructure takedown
-
#Glassworm #botnet disrupted after resilient C2 infrastructure takedown
-
#Glassworm #botnet disrupted after resilient C2 infrastructure takedown
-
#Glassworm #botnet disrupted after resilient C2 infrastructure takedown
-
#Glassworm #botnet disrupted after resilient C2 infrastructure takedown
-
Glassworm smantellato: CrowdStrike abbatte la botnet che prendeva di mira gli sviluppatori attraverso npm, PyPI e GitHub
Il 26 maggio 2026, CrowdStrike, Google e Shadowserver Foundation hanno eseguito un takedown coordinato di Glassworm, botnet attivo da oltre un anno che infettava sviluppatori attraverso estensioni VSCode trojanizzate, pacchetti npm/Python malevoli e repository GitHub avvelenati. Il C2 sfruttava blockchain Solana, BitTorrent DHT e Google Calendar come canali di resilienza. -
Glassworm smantellato: CrowdStrike abbatte la botnet che prendeva di mira gli sviluppatori attraverso npm, PyPI e GitHub
Il 26 maggio 2026, CrowdStrike, Google e Shadowserver Foundation hanno eseguito un takedown coordinato di Glassworm, botnet attivo da oltre un anno che infettava sviluppatori attraverso estensioni VSCode trojanizzate, pacchetti npm/Python malevoli e repository GitHub avvelenati. Il C2 sfruttava blockchain Solana, BitTorrent DHT e Google Calendar come canali di resilienza. -
Glassworm smantellato: CrowdStrike abbatte la botnet che prendeva di mira gli sviluppatori attraverso npm, PyPI e GitHub
Il 26 maggio 2026, CrowdStrike, Google e Shadowserver Foundation hanno eseguito un takedown coordinato di Glassworm, botnet attivo da oltre un anno che infettava sviluppatori attraverso estensioni VSCode trojanizzate, pacchetti npm/Python malevoli e repository GitHub avvelenati. Il C2 sfruttava blockchain Solana, BitTorrent DHT e Google Calendar come canali di resilienza. -
Glassworm smantellato: CrowdStrike abbatte la botnet che prendeva di mira gli sviluppatori attraverso npm, PyPI e GitHub
Il 26 maggio 2026, CrowdStrike, Google e Shadowserver Foundation hanno eseguito un takedown coordinato di Glassworm, botnet attivo da oltre un anno che infettava sviluppatori attraverso estensioni VSCode trojanizzate, pacchetti npm/Python malevoli e repository GitHub avvelenati. Il C2 sfruttava blockchain Solana, BitTorrent DHT e Google Calendar come canali di resilienza. -
Glassworm smantellato: CrowdStrike abbatte la botnet che prendeva di mira gli sviluppatori attraverso npm, PyPI e GitHub
Il 26 maggio 2026, CrowdStrike, Google e Shadowserver Foundation hanno eseguito un takedown coordinato di Glassworm, botnet attivo da oltre un anno che infettava sviluppatori attraverso estensioni VSCode trojanizzate, pacchetti npm/Python malevoli e repository GitHub avvelenati. Il C2 sfruttava blockchain Solana, BitTorrent DHT e Google Calendar come canali di resilienza. -
📢 Démantèlement du botnet Glassworm ciblant les développeurs open source via la supply chain
📝 ## 🗓️ ContexteSource : TechCrunch,...
📖 cyberveille : https://cyberveille.ch/posts/2026-05-28-demantelement-du-botnet-glassworm-ciblant-les-developpeurs-open-source-via-la-supply-chain/
🌐 source : https://techcrunch.com/2026/05/27/crowdstrike-and-google-take-down-botnet-used-by-hackers-to-target-software-developers-in-supply-chain-attacks/
#Glassworm #Glassworm_botnet #Cyberveille -
📢 Démantèlement du botnet Glassworm ciblant les développeurs via la supply chain open-source
📝 ## 🎯 ContexteLe 26 mai 2026 à 14h00 UTC, CrowdStrike Counter Adversary Operations a...
📖 cyberveille : https://cyberveille.ch/posts/2026-05-27-demantelement-du-botnet-glassworm-ciblant-les-developpeurs-via-la-supply-chain-open-source/
🌐 source : https://www.crowdstrike.com/en-us/blog/inside-crowdstrike-takedown-of-a-developer-targeting-botnet/
#Glassworm #GlasswormRAT #Cyberveille -
CrowdStrike disrupts Glassworm botnet with global takedown
In a major win for cybersecurity, CrowdStrike has successfully dismantled the notorious Glassworm botnet in a global takedown, cutting off its operators from infected machines worldwide. The infected machines now harmlessly connect to a CrowdStrike-controlled IP address, rendering the botnet useless.
#BotnetTakedown #EmergingThreats #Glassworm #Crowdstrike #Google
-
CrowdStrike and Google take down botnet used by hackers to target software developers in supply chain attacks
#botnet #crowdstrike #github #glassworm #google #shadowserver
-
CrowdStrike and Google take down botnet used by hackers to target software developers in supply chain attacks
#botnet #crowdstrike #github #glassworm #google #shadowserver
-
CrowdStrike and Google take down botnet used by hackers to target software developers in supply chain attacks
#botnet #crowdstrike #github #glassworm #google #shadowserver
-
CrowdStrike and Google take down botnet used by hackers to target software developers in supply chain attacks
#botnet #crowdstrike #github #glassworm #google #shadowserver
-
CrowdStrike and Google take down botnet used by hackers to target software developers in supply chain attacks
#botnet #crowdstrike #github #glassworm #google #shadowserver
-
CrowdStrike dismantles Glassworm botnet targeting open-source supply chain
In a major win for cybersecurity, CrowdStrike has successfully dismantled the notorious Glassworm botnet, crippling its ability to target the open-source supply chain. By taking down four key servers, CrowdStrike has forced the attackers to regroup and rebuild, buying time for the industry to stay one step ahead.
#BotnetDisruption #Glassworm #OpensourceSupplyChain #EmergingThreats #Crowdstrike
-
CrowdStrike dismantles Glassworm botnet targeting open-source supply chain
In a major win for cybersecurity, CrowdStrike has successfully dismantled the notorious Glassworm botnet, crippling its ability to target the open-source supply chain. By taking down four key servers, CrowdStrike has forced the attackers to regroup and rebuild, buying time for the industry to stay one step ahead.
#BotnetDisruption #Glassworm #OpensourceSupplyChain #EmergingThreats #Crowdstrike
-
Disrupting Glassworm: Inside CrowdStrike’s Takedown of a Developer-Targeting Botnet
#GlassWorm
https://www.crowdstrike.com/en-us/blog/inside-crowdstrike-takedown-of-a-developer-targeting-botnet/ -
Disrupting Glassworm: Inside CrowdStrike’s Takedown of a Developer-Targeting Botnet
#GlassWorm
https://www.crowdstrike.com/en-us/blog/inside-crowdstrike-takedown-of-a-developer-targeting-botnet/ -
Disrupting Glassworm: Inside CrowdStrike’s Takedown of a Developer-Targeting Botnet
#GlassWorm
https://www.crowdstrike.com/en-us/blog/inside-crowdstrike-takedown-of-a-developer-targeting-botnet/ -
Disrupting Glassworm: Inside CrowdStrike’s Takedown of a Developer-Targeting Botnet
#GlassWorm
https://www.crowdstrike.com/en-us/blog/inside-crowdstrike-takedown-of-a-developer-targeting-botnet/ -
Disrupting Glassworm: Inside CrowdStrike’s Takedown of a Developer-Targeting Botnet
#GlassWorm
https://www.crowdstrike.com/en-us/blog/inside-crowdstrike-takedown-of-a-developer-targeting-botnet/ -
CrowdStrike and Google Disrupt Glassworm Botnet Infrastructure
In a major win for cybersecurity, a powerful collaboration between CrowdStrike, Google, and the Shadowserver Foundation successfully dismantled the Glassworm botnet by simultaneously taking down all four of its command-and-control channels. This bold move cut off the botnet's operators from infected devices, preventing further…
#BotnetDisruption #Glassworm #EmergingThreats #CommandAndControl #Blockchain
-
Glassworm botnet disrupted by takedown of resilient C2 infrastructure
In a major win for cybersecurity, researchers from CrowdStrike, Google, and The Shadowserver Foundation have successfully disrupted the Glassworm botnet by dismantling its complex command-and-control infrastructure. This takedown cuts off the lifelines of the threat actors, halting their campaigns that had been ongoing since…
#BotnetTakedown #Glassworm #C2Infrastructure #Blockchain #Peertopeer
-
CrowdStrike Disrupts GlassWorm Malware's Global Supply Chain Attack Infrastructure
In a major win for cybersecurity, CrowdStrike teamed up with Google and the Shadowserver Foundation to dismantle the global infrastructure behind the GlassWorm malware attack, crippling its ability to issue commands or deliver new payloads to infected machines. This coordinated operation targeted and neutralized…
#Glassworm #MalwareOperations #SupplyChain #EmergingThreats #CicdPipeline
-
GlassWorm muta ancora: 73 estensioni “sleeper” su Open VSX pronte a svegliarsi come malware
La campagna GlassWorm torna con 73 nuove estensioni dormanti sul marketplace Open VSX. Socket ha rilevato nuove attivazioni malware da estensioni che erano parse innocue per settimane: un escalation preoccupante per l'intera pipeline di sviluppo software. -
GlassWorm muta ancora: 73 estensioni “sleeper” su Open VSX pronte a svegliarsi come malware
La campagna GlassWorm torna con 73 nuove estensioni dormanti sul marketplace Open VSX. Socket ha rilevato nuove attivazioni malware da estensioni che erano parse innocue per settimane: un escalation preoccupante per l'intera pipeline di sviluppo software. -
GlassWorm muta ancora: 73 estensioni “sleeper” su Open VSX pronte a svegliarsi come malware
La campagna GlassWorm torna con 73 nuove estensioni dormanti sul marketplace Open VSX. Socket ha rilevato nuove attivazioni malware da estensioni che erano parse innocue per settimane: un escalation preoccupante per l'intera pipeline di sviluppo software. -
GlassWorm muta ancora: 73 estensioni “sleeper” su Open VSX pronte a svegliarsi come malware
La campagna GlassWorm torna con 73 nuove estensioni dormanti sul marketplace Open VSX. Socket ha rilevato nuove attivazioni malware da estensioni che erano parse innocue per settimane: un escalation preoccupante per l'intera pipeline di sviluppo software. -
GlassWorm muta ancora: 73 estensioni “sleeper” su Open VSX pronte a svegliarsi come malware
La campagna GlassWorm torna con 73 nuove estensioni dormanti sul marketplace Open VSX. Socket ha rilevato nuove attivazioni malware da estensioni che erano parse innocue per settimane: un escalation preoccupante per l'intera pipeline di sviluppo software. -
📢 73 extensions Open VSX dormantes liées à GlassWorm activent une nouvelle campagne malveillante
📝 ## 🗓️ ContextePublié le 26 avril 2026 sur CyberAccord, cet ar...
📖 cyberveille : https://cyberveille.ch/posts/2026-04-26-73-extensions-open-vsx-dormantes-liees-a-glassworm-activent-une-nouvelle-campagne-malveillante/
🌐 source : https://www.cyberaccord.com/73-open-vsx-sleeper-extensions-linked-to-glassworm-activate-new-malware-campaign/
#GlassWorm #GlassWorm_loader #Cyberveille -
📢 GlassWorm : un dropper Zig infecte tous les IDE compatibles VS Code via une fausse extension WakaTime
📝 ## 🔍 ContextePublié le 8 avril 2026 par Aikido Security, cet article présente...
📖 cyberveille : https://cyberveille.ch/posts/2026-09-04-glassworm-un-dropper-zig-infecte-tous-les-ide-compatibles-vs-code-via-une-fausse-extension-wakatime/
🌐 source : https://www.aikido.dev/blog/glassworm-zig-dropper-infects-every-ide-on-your-machine
#GlassWorm #GlassWorm_RAT #Cyberveille -
GlassWorm goes native: New Zig dropper infects every IDE on your machine
#GlassWorm
https://www.aikido.dev/blog/glassworm-zig-dropper-infects-every-ide-on-your-machine -
GlassWorm goes native: New Zig dropper infects every IDE on your machine
#GlassWorm
https://www.aikido.dev/blog/glassworm-zig-dropper-infects-every-ide-on-your-machine -
GlassWorm goes native: New Zig dropper infects every IDE on your machine
#GlassWorm
https://www.aikido.dev/blog/glassworm-zig-dropper-infects-every-ide-on-your-machine -
GlassWorm goes native: New Zig dropper infects every IDE on your machine
#GlassWorm
https://www.aikido.dev/blog/glassworm-zig-dropper-infects-every-ide-on-your-machine -
GlassWorm goes native: New Zig dropper infects every IDE on your machine
#GlassWorm
https://www.aikido.dev/blog/glassworm-zig-dropper-infects-every-ide-on-your-machine -
GlassWorm: il worm che infetta tutti gli IDE tramite un’estensione OpenVSX contraffatta
Un dropper compilato in Zig si propaga da un'estensione fake WakaTime su OpenVSX verso tutti gli IDE VS Code-compatibili presenti sulla macchina, deployando un RAT con C2 su blockchain Solana e un'estensione Chrome per il furto di sessioni. Analisi tecnica completa della campagna GlassWorm. -
GlassWorm: il worm che infetta tutti gli IDE tramite un’estensione OpenVSX contraffatta
Un dropper compilato in Zig si propaga da un'estensione fake WakaTime su OpenVSX verso tutti gli IDE VS Code-compatibili presenti sulla macchina, deployando un RAT con C2 su blockchain Solana e un'estensione Chrome per il furto di sessioni. Analisi tecnica completa della campagna GlassWorm. -
GlassWorm: il worm che infetta tutti gli IDE tramite un’estensione OpenVSX contraffatta
Un dropper compilato in Zig si propaga da un'estensione fake WakaTime su OpenVSX verso tutti gli IDE VS Code-compatibili presenti sulla macchina, deployando un RAT con C2 su blockchain Solana e un'estensione Chrome per il furto di sessioni. Analisi tecnica completa della campagna GlassWorm. -
GlassWorm: il worm che infetta tutti gli IDE tramite un’estensione OpenVSX contraffatta
Un dropper compilato in Zig si propaga da un'estensione fake WakaTime su OpenVSX verso tutti gli IDE VS Code-compatibili presenti sulla macchina, deployando un RAT con C2 su blockchain Solana e un'estensione Chrome per il furto di sessioni. Analisi tecnica completa della campagna GlassWorm. -
GlassWorm: il worm che infetta tutti gli IDE tramite un’estensione OpenVSX contraffatta
Un dropper compilato in Zig si propaga da un'estensione fake WakaTime su OpenVSX verso tutti gli IDE VS Code-compatibili presenti sulla macchina, deployando un RAT con C2 su blockchain Solana e un'estensione Chrome per il furto di sessioni. Analisi tecnica completa della campagna GlassWorm. -
El malware GlassWorm ataca a los Mac con monederos de criptomonedas
#ciberseguridad #AppleSecurity #GlassWorm
https://mecambioamac.com/el-malware-glassworm-ataca-a-los-mac-con-monederos-de-criptomonedas/
-
El malware GlassWorm ataca a los Mac con monederos de criptomonedas
#ciberseguridad #AppleSecurity #GlassWorm
https://mecambioamac.com/el-malware-glassworm-ataca-a-los-mac-con-monederos-de-criptomonedas/
-
ForceMemo: malware ukrywany w repozytoriach przez force-push
Badacze bezpieczeństwa z StepSecurity odkryli nową kampanię malware, w której atakujący przejmuje masowo konta programistów na GitHub i wstrzykuje złośliwe oprogramowanie do setek repozytoriów. Pierwszą aktywność odnotowano 8 marca 2026 roku, ale według ustaleń badaczy kampania wciąż trwa i przejmowane są kolejne repozytoria. Kampania – nazwana przez badaczy ForceMemo –...
#Aktualności #Github #Glassworm #Malware
https://sekurak.pl/forcememo-malware-ukrywany-w-repozytoriach-przez-force-push/
-
ForceMemo: malware ukrywany w repozytoriach przez force-push
Badacze bezpieczeństwa z StepSecurity odkryli nową kampanię malware, w której atakujący przejmuje masowo konta programistów na GitHub i wstrzykuje złośliwe oprogramowanie do setek repozytoriów. Pierwszą aktywność odnotowano 8 marca 2026 roku, ale według ustaleń badaczy kampania wciąż trwa i przejmowane są kolejne repozytoria. Kampania – nazwana przez badaczy ForceMemo –...
#Aktualności #Github #Glassworm #Malware
https://sekurak.pl/forcememo-malware-ukrywany-w-repozytoriach-przez-force-push/
-
ForceMemo: malware ukrywany w repozytoriach przez force-push
Badacze bezpieczeństwa z StepSecurity odkryli nową kampanię malware, w której atakujący przejmuje masowo konta programistów na GitHub i wstrzykuje złośliwe oprogramowanie do setek repozytoriów. Pierwszą aktywność odnotowano 8 marca 2026 roku, ale według ustaleń badaczy kampania wciąż trwa i przejmowane są kolejne repozytoria. Kampania – nazwana przez badaczy ForceMemo –...
#Aktualności #Github #Glassworm #Malware
https://sekurak.pl/forcememo-malware-ukrywany-w-repozytoriach-przez-force-push/
-
ForceMemo: malware ukrywany w repozytoriach przez force-push
Badacze bezpieczeństwa z StepSecurity odkryli nową kampanię malware, w której atakujący przejmuje masowo konta programistów na GitHub i wstrzykuje złośliwe oprogramowanie do setek repozytoriów. Pierwszą aktywność odnotowano 8 marca 2026 roku, ale według ustaleń badaczy kampania wciąż trwa i przejmowane są kolejne repozytoria. Kampania – nazwana przez badaczy ForceMemo –...
#Aktualności #Github #Glassworm #Malware
https://sekurak.pl/forcememo-malware-ukrywany-w-repozytoriach-przez-force-push/
-
ForceMemo: malware ukrywany w repozytoriach przez force-push
Badacze bezpieczeństwa z StepSecurity odkryli nową kampanię malware, w której atakujący przejmuje masowo konta programistów na GitHub i wstrzykuje złośliwe oprogramowanie do setek repozytoriów. Pierwszą aktywność odnotowano 8 marca 2026 roku, ale według ustaleń badaczy kampania wciąż trwa i przejmowane są kolejne repozytoria. Kampania – nazwana przez badaczy ForceMemo –...
#Aktualności #Github #Glassworm #Malware
https://sekurak.pl/forcememo-malware-ukrywany-w-repozytoriach-przez-force-push/
-
The most interesting supply chain attack I've ever seen: #trivy
The attack is really bizarre. I learned a lot about GitHub Actions and how the attack was performed.
- https://www.aquasec.com/blog/trivy-supply-chain-attack-what-you-need-to-know/
- https://www.stepsecurity.io/blog/hackerbot-claw-github-actions-exploitation
- https://ramimac.me/trivy-teampcp/#timeline
- https://snyk.io/articles/trivy-github-actions-supply-chain-compromise/#cybersecurity #supplychain #github #glassworm #githubactions #attack #TeamPCP #c2