GlassWorm Archives

CrowdStrike Glassworm Takedown Exposes Developer Supply Chain Risk

Jaime Hampton | May 28, 2026 | C2, CrowdStrike, GlassWorm, supply chain

CrowdStrike announced it has taken down the Glassworm botnet, a global threat campaign attacking software developers through open source tools. The company simultaneously struck Glassworm’s four command-and-control (C2) channels alongside collaborators Google ...

Security Boulevard

GlassWorm Malware Attacks Return via 73 OpenVSX Sleeper Extensions

Evan Rowe | April 28, 2026 | Cyber threats and incidents, GlassWorm, Malware

What happened A new wave of the GlassWorm supply chain attack campaign has been identified by Socket researchers, deploying 73 extensions to the OpenVSX registry that are designed to appear benign on ...

CISO Whisperer

Malwarebytes blocks the IP address 45.32.150.251 used for stage 2 payload delivery, and the stage three WebSocket RAT

GlassWorm attack installs fake browser extension for surveillance

Malwarebytes | March 26, 2026 | browser extension, developers, GlassWorm, SBN News, Threat Intel

It hides inside developer tools, then monitors activity and steals data, turning a single infection into a wider risk across the supply chain ...

Malwarebytes

An Evolving GlassWorm Malware is Making the Rounds of Code Repositories

Jeffrey Burt | March 25, 2026 | Aikido Security, GitHub, GlassWorm, Koi Security, MCP servers, npm, Open VSX, PyPI security, Remote Access Trojan (RAT), Socket

The bad actor can now deploy a RAT, is targeting MCP servers, and is finding new ways to move through Open VSX ...

Security Boulevard

GlassWorm

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On