Researchers disrupted the Glassworm botnet after dismantling its resilient command-and-control infrastructure during a coordinated cybersecurity operation. The malware campaign targeted software developers through malicious packages, poisoned repositories, and compromised development tools. Security experts said Glassworm relied on several decentralized communication methods designed to survive traditional takedown efforts. The operation highlights the growing sophistication of modern…
A newly identified GlassWorm macOS attack is exploiting compromised extensions distributed through the OpenVSX marketplace. The campaign targets developers by abusing trusted tools and injecting malicious code into otherwise legitimate extensions, turning a common development workflow into a supply chain threat. The attack highlights a growing trend in malware delivery. Instead of relying on phishing…
The GlassWorm malware resurfaced in a new campaign that targets developers through malicious Visual Studio Code extensions. Security researchers discovered multiple infected packages on major extension marketplaces, signalling a persistent supply-chain threat. The latest wave shows that attackers continue refining techniques to infiltrate development environments and steal high-value credentials. How GlassWorm infiltrates developer tools GlassWorm…