CrowdStrike and Google have collaborated to dismantle the Glassworm botnet, which was notable for targeting developers through supply-chain attacks. The takedown highlights the growing trend of developer-focused and supply-chain attack vectors in the cybersecurity landscape.
Table of contents
Megalodon chums the waters in 5.5K+ GitHub repo poisoningsGitHub says internal repos exfiltrated after poisoned VS Code extension attackShai-Hulud keeps burrowing: 314 npm packages infected after another account compromiseMalware crew TeamPCP open-sources its Shai-Hulud worm on GitHubWe are working with partners to bring more pain to attackers, especially when we see them abusing our products or targeting our usersC2 architecture designed to withstand takedownsSort: