GlassWorm Malware Hides in Invisible Open-Source Code

Published:

March 21, 2026

From

Scientific American

Professor Justin Cappos explained how GlassWorm — a campaign that hid malware in invisible Unicode characters across hundreds of open-source repositories — exploits software dependency chains so that a single poisoned building block can spread malware far beyond its point of origin.

Read the article

Departments

Degrees & Programs

Resources

Overview

Community

News & Events

GlassWorm Malware Hides in Invisible Open-Source Code

More to Read

Why Faster AI Isn’t Always Better

Bubble Trouble: New Research Highlights Outsized Impacts of Tiny Bubbles in Water Electrolysis

From the Office of Undergraduate Academics to Her Own Dissertation Defense