CrowdStrike and Google Neutralize Glassworm Botnet Targeting Open-Source Developers

Colleagues, please note: CrowdStrike, Google and Shadowserver have neutralized the Glassworm botnet, which stole credentials and distributed malware among developers.
- Four C2 channels were disrupted, severing the attackers' access.
- Attacks involved malicious extensions, malvertising and compromised accounts; more than 300 GitHub repositories were affected.
- C2 infrastructure abused Solana, BitTorrent, Google Calendar and VPS — a hybrid setup that complicated detection.
Why this matters: compromising a developer can lead to widespread downstream infection.
What mitigation steps do you consider priorities to protect developers and supply chains?
#cybersecurity #supplychain #opensource #infosec


Latest comments
No comments yet.