CrowdStrike and Google take down botnet used by hackers to target open source software developers

Cybercriminals used the Glassworm botnet to infect open source software projects with malware, and in turn hack the ...
Martin Cid Magazine

GlassWorm hid invisible code in VS Code extensions for a year before its takedown

For more than a year, a self-propagating worm rode VS Code extensions, npm packages, and stolen developer credentials through ...
Martin Cid Magazine

Supply chain attacks hide malicious code inside the software you trust

Most software is assembled from thousands of borrowed components, and attackers have learned it is easier to poison a part ...