THREATNOIR
Subscribe
Back to Feed
Supply ChainJun 10, 2026

Glassworm poisoned 300+ open-source repos by weaponizing trusted developer infrastructure. Worki...

Glassworm poisoned 300+ open-source repos by weaponizing trusted developer infrastructure.

Read at source

Summary

The Glassworm threat actor has compromised over 300 open-source repositories by exploiting trusted developer infrastructure. In collaboration with Google and Shadowserver, CrowdStrike successfully disrupted all four command-and-control (C2) channels associated with the botnet, effectively dismantling the operation.

Entities

Glassworm (threat_actor)Google (vendor)Shadowserver (vendor)CrowdStrike (vendor)open-source (technology)