Glassworm
Reports
5
First seen
May 26
Last seen
Jun 1
Motivation
espionage, financial, Supply-chain compromise for broad downst
Targeting
Sectors
technology ×1
Top ATT&CK techniques
T1071.001 Application Layer Protocol: Web Protocols ×3T1195.001 Supply Chain Compromise: Compromise Software Dependencies and Development Tools ×3T1041 Exfiltration Over C2 Channel ×2T1195.002 Supply Chain Compromise: Compromised Software Dependencies ×2T1105 Ingress Tool Transfer ×2T1219 Remote Access Software ×2T1566 Phishing ×2T1195 Supply Chain Compromise ×2T1071 Application Layer Protocol ×1T1552.007 Unsecured Credentials: Hardcoded Credentials ×1T1555.001 Credentials from Password Stores: Credentials from Web Browsers ×1T1110 Brute Force ×1
Indicators
cve ×35filename ×2ip_v4 ×2domain ×1url ×1
Indicator values are available on Pro and via the API.
Associated CVEs
Recent reports
High