GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos
- Posted on March 16, 2026
- By The Hacker News
- 4 Views
GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos
GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to supply-chain compromise.
