All Topics
All Topics
Technology
Technology
AI
AI
Business
Business
Entertainment
Entertainment
News
News
Programming
Programming
Science
Science
Design
Design
Environment
Environment
Finance
Finance
Crypto
Crypto
Politics
Politics
Sports
Sports
Education
Education
Gaming
Gaming
Art
Art
Music
Music
Health
Health
Security
Security
Books
Books
Food
Food
Travel
Travel
Personal
Personal
Bluesky
Twitter

Glassworm Threat Actor Returns with Unicode-Based Supply Chain Attacks on GitHub, npm, and VS Code

The Glassworm supply chain attack is back. Researchers uncovered malware hidden in invisible Unicode characters across 150+ GitHub repositories, plus npm packages and VS Code extensions.

Read the full article
robinhouston4mo ago4 min readenNews

You might also wanna read

IronWorm Supply-Chain Attack Targets Developers via Malicious npm Packages

A new self-replicating supply-chain attack dubbed "IronWorm" has been discovered in the wild. Built in Rust and hiding behind an eBPF rootki

cyberpress.org·1mo ago

GitHub disables 73 Microsoft repositories after detecting Miasma worm supply chain attack

Miasma worm shapeshifts, but cloud secret-scouting remains the goal

theregister.com·1mo ago

Glassworm Malware Campaign Targets Developers via npm, PyPI, OpenVSX, and GitHub

A dangerous malware campaign known as Glassworm has been spreading through the tools that software developers trust most every day. By abusi

cybersecuritynews.com·1mo ago

Miasma supply-chain attack targets AI coding assistants, forcing GitHub to disable 73 repositories

GitHub disabled 73 repositories across four Microsoft organizations on June 5 after the self-replicating supply-chain campaign known as Mias

jdsupra.com·1mo ago

Supply Chain Attack via Malicious Commit Hits 73 Microsoft GitHub Repositories

GitHub disabled 73 Microsoft repositories on June 5 after a malicious commit landed in an Azure project, in what researchers described as a

redmondmag.com·1mo ago

Supply Chain Attack via Malicious Commit Hits 73 Microsoft GitHub Repositories

GitHub disabled 73 Microsoft repositories on June 5 after a malicious commit landed in an Azure project, in what researchers described as a

redmondmag.com·1mo ago

Network of 200 GitHub Repositories Used for Malware Infection

A threat actor has created a network of over 200 GitHub repositories that distribute Windows malware via a malicious Go module. This module

radar.offseq.com·8d ago

Comments

Sign in to join the conversation.

No comments yet. Be the first.