> TritonInfoSec News
Home / Mar 17, 2026 / Story
0
#1 The Hacker News general March 16, 2026 at 19:37 UTC

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

By [email protected] (The Hacker News)

AI Summary

The GlassWorm malware campaign leverages stolen GitHub tokens to force-push malicious code into hundreds of Python repositories, targeting Django apps, ML research code, Streamlit dashboards, and PyPI packages by appending obfuscated code to setup.py, main.py, and app.py files. StepSecurity researchers identified dozens of malicious GlassWorm extensions using new evasion techniques to hide in dependencies and avoid detection.

Read full article → https://thehackernews.com/2026/03/glassworm-attack…

Relevance score: 85.0/100

# More from March 17

  1. 2
    Stryker attack wiped tens of thousands of devices, no malware needed BleepingComputer
  2. 3
    CISA flags Wing FTP Server flaw as actively exploited in attacks BleepingComputer
  3. 4
    Russia-linked espionage campaign targeting Ukraine using Starlink and charity lures The Record
  4. 5
    China-Linked Hackers Hit Asian Militaries in Patient Espionage Operation SecurityWeek
  5. 6
    Threat Actor Targeting VPN Users in New Credential Theft Campaign SecurityWeek
  6. 7
    UK’s Companies House confirms security flaw exposed business data BleepingComputer
  7. 8
    Oracle EBS Hack: Only 4 Corporate Giants Still Silent on Potential Impact SecurityWeek
  8. 9
    Security Firm Executive Targeted in Sophisticated Phishing Attack SecurityWeek
  9. 10
    Attackers Abuse LiveChat to Phish Credit Card, Personal Data Dark Reading