📰 2026-03-16 01:00 更新
🔸 Glassworm Is Back: A New Wave of Invisible Unicode Attacks Hits Repositories / Glassworm回来了:新一波看不见的Unicode攻击击中了存储库
🔗 Glassworm Is Back: A New Wave of Invisible Unicode Attacks Hits Repositories
🔥 62 points
原文:
The invisible threat we’ve been tracking for nearly a year is back. While the PolinRider campaign has been making headlines for compromising hundreds of GitHub repositories, we are separately seeing a new wave of Glassworm activity hitting GitHub, npm, and VS Code.In October last year, we wrote about how hidden Unicode characters were being used to compromise GitHub repositories, tracing the technique back to a threat actor named Glassworm. This month, the same actor is back, and among the af…
译文:
我们追踪了将近一年的隐形威胁又回来了。虽然PolinRider活动因破坏数百个GitHub存储库而成为头条新闻,但我们分别看到新一波Glassworm活动袭击了GitHub、npm和VS Code。去年10月,我们撰写了关于隐藏的Unicode字符如何被用来破坏GitHub存储库的文章,将该技术追溯到名为Glassworm的威胁参与者。 月,同一个演员回来了,在AF中…
自动更新 · 正文抓取 · 双语翻译