GlassWorm Malware Targets Developers with Invisible Code

A new supply-chain attack, GlassWorm, is targeting developers on OpenVSX and Microsoft Visual Studio marketplaces. The malware uses invisible Unicode characters to hide its code and spreads using stolen account information. It leverages the Solana blockchain for command-and-control, making takedown difficult. Researchers found that the malware has been installed an estimated 35,800 times and can steal credentials for various platforms and cryptocurrency wallet data.

Latest mentioned: 10-20

Earliest mentioned: 10-20

Sources

securityonline.info bleepingcomputer.com

Also Read

OtterCandy Malware: Sophisticated Update by WaterPlum Group

A new report from NTT Security Japan highlights the evolved malware family OtterCandy, attributed to the WaterPlum group. This campaign showcases advanced multi-platform intrusion capabilities, targeting Windows, macOS, and Linux. OtterCandy, built with Node.js, functions as both a Remote Access Trojan (RAT) and an Information Stealer, combining elements from earlier espionage tools. The malware's latest update enhances its persistence and data-theft capabilities, including an anti-forensic module that removes traces after execution.

10-20Read more →