CrowdStrike, working with Google and the Shadowserver Foundation, has successfully disrupted the GlassWorm botnet that has been targeting open source software developers for over six months. The sophisticated malware used multiple resilient command-and-control channels including the Solana blockchain, Google Calendar, BitTorrent, and traditional servers, and was designed to steal developer credentials and cryptocurrency while hiding itself using invisible Unicode characters in code editors. The takedown is particularly significant because GlassWorm represents a growing threat where attackers target developers themselves rather than just software products, creating serious supply chain security risks for any organization that consumes software built in compromised development environments.