MalwareBleeping Computer
8.0 — CRITICAL
Glassworm botnet disrupted after resilient C2 infrastructure takedown
The Glassworm botnet targeting developers in software supply-chain attacks has been disrupted after researchers took down its resilient command-and-control infrastructure relying on Solana blockchain transactions and the BitTorrent DHT network. [...]
🤖 AI BriefingAuto-generated threat analysis
🔍Threat Overview
The Glassworm botnet has been disrupted after researchers took down its resilient command-and-control infrastructure, which relied on Solana blockchain transactions and the BitTorrent DHT network. The disruption was a coordinated effort by CrowdStrike, Google, and The Shadowserver Foundation.
⚙️Technical Details
Affected Systems
GitHub repositoriesnpm packagesOpenVSX extensionsMicrosoft VS Code extensions
Attack Vectors
Solana blockchain transactionsBitTorrent Distributed Hash Table (DHT)Google Calendar event titlesDirect server connections
💥Impact Assessment
Severity: High
Who Is at Risk
Developers and organizations with compromised GitHub repositories, npm packages, or OpenVSX extensions.
🛡️Recommended Actions
1Monitor for suspicious activity on affected systems
2Verify that detection rules are firing correctly
3Validate cloud configurations to prevent future attacks
📦Affected Products
OpenVSX extensionsMicrosoft VS Code extensionsGitHub repositoriesnpm packages
Read the full article
This is a curated summary. The complete article is available at Bleeping Computer.