Skip to content
The Nexus
DossierENTITY

Shadowserver

Coverage of Shadowserver in the Nexus archive.

Earliest in view: Apr 21 · 11:17 UTCMost recent: Jul 3 · 12:03 UTC
Co-mentioned in this coverage
Recent coverage
  • SECURITYJul 3 · 12:03 UTCTHE REGISTER
    NetNut cracked as Google and FBI target 2 million-device botnet

    Google, the FBI, and other tech companies have significantly disrupted the NetNut residential proxy network, which had at least 2 million devices in its botnet, primarily small TV-streaming hardware. The operation aims to hinder cybercriminals who use residential proxies to mask malicious activities by making traffic appear legitimate.

  • SECURITYMay 27 · 13:35 UTCCYBERSCOOP
    CrowdStrike disrupts Glassworm botnet that preyed on open-source supply chain

    CrowdStrike, with assistance from Google and Shadowserver, dismantled the Glassworm botnet, which had infected hundreds of open-source software packages since 2025. The operation disrupted four attacker-controlled servers and infrastructure layers, including Solana blockchain, BitTorrent, and Google Calendar, to halt malware distribution and credential theft.

  • SECURITYApr 21 · 11:17 UTCBLEEPING COMPUTER
    Actively exploited Apache ActiveMQ flaw impacts 6,400 servers

    A high-severity code injection vulnerability in Apache ActiveMQ is being actively exploited, with over 6,400 exposed servers at risk. The nonprofit security organization Shadowserver identified the ongoing attacks.

Shadowserver · Dossier · The Nexus