VMTech
+381 11 4150 20024/7 Discuss a project
← All Instagram insights VMTECH · INSTAGRAM

CrowdStrike and Google Neutralize Glassworm Botnet Targeting Open-Source Developers

CrowdStrike и Google нейтрализовали ботнет Glassworm, нацеленный на разработчиков открытого ПО

Colleagues, please note: CrowdStrike, Google and Shadowserver have neutralized the Glassworm botnet, which stole credentials and distributed malware among developers.

- Four C2 channels were disrupted, severing the attackers' access.
- Attacks involved malicious extensions, malvertising and compromised accounts; more than 300 GitHub repositories were affected.
- C2 infrastructure abused Solana, BitTorrent, Google Calendar and VPS — a hybrid setup that complicated detection.

Why this matters: compromising a developer can lead to widespread downstream infection.

What mitigation steps do you consider priorities to protect developers and supply chains?

#cybersecurity #supplychain #opensource #infosec

Latest comments

No comments yet.