GlassWorm Developer Supply-Chain Botnet Takedown

📰 Reddit r/cybersecurity

CrowdStrike, Google, and Shadowserver disrupted GlassWorm command-and-control on 2026-05-26 after the campaign used Open VSX extensions, npm and Python packages, and poisoned GitHub repositories to maintain access to developer systems. submitted by /u/halting_problems [link]<

Published 27 May 2026

Full Article

Title:

URL Source: https://www.reddit.com/r/cybersecurity/comments/1tp5657/glassworm_developer_supplychain_botnet_takedown/

Warning: Target URL returned error 403: Forbidden

Markdown Content:
![Image 1](blob:http://localhost/7c466567fbe25390de55d6f3b6eed7c5)

You've been blocked by network security.

To continue, log in to your Reddit account or use your developer token

If you think you've been blocked by mistake, file a ticket below and we'll look into it.

[Log in](https://www.reddit.com/login/)[File a ticket](https://support.reddithelp.com/hc/en-us/requests/new?ticket_form_id=21879292693140)
Read full article → ← Back to Reads