Glassworm

Reports
5
First seen
May 26
Last seen
Jun 1
Motivation
espionage, financial, Supply-chain compromise for broad downst

Targeting

Sectors
technology ×1

Top ATT&CK techniques

T1071.001 Application Layer Protocol: Web Protocols ×3T1195.001 Supply Chain Compromise: Compromise Software Dependencies and Development Tools ×3T1041 Exfiltration Over C2 Channel ×2T1195.002 Supply Chain Compromise: Compromised Software Dependencies ×2T1105 Ingress Tool Transfer ×2T1219 Remote Access Software ×2T1566 Phishing ×2T1195 Supply Chain Compromise ×2T1071 Application Layer Protocol ×1T1552.007 Unsecured Credentials: Hardcoded Credentials ×1T1555.001 Credentials from Password Stores: Credentials from Web Browsers ×1T1110 Brute Force ×1

Indicators

cve ×35filename ×2ip_v4 ×2domain ×1url ×1

Indicator values are available on Pro and via the API.

Associated CVEs

Recent reports

This page shows data on a 7-day delay. Free accounts get the full delayed feed; real-time reports, indicators, and the API start at $29/mo.