Bleeping Computer

PyPI packages caught stealing credit card numbers, Discord tokens

The Python Package Index (PyPI) registry has removed several Python packages this week aimed at stealing users' credit card numbers, Discord tokens, and granting code execution capabilities to ...
Bleeping Computer

Malicious PyPi package steals Discord auth tokens from devs

A malicious package named 'pycord-self' on the Python package index (PyPI) targets Discord developers to steal authentication tokens and plant a backdoor for remote control over the system. The ...
Infosecurity-magazine.com

Malicious Npm Packages Designed to Steal Discord Tokens

Security researchers have discovered yet another supply chain attack campaign using malicious npm packages, this time targeting Discord users. Kaspersky said it identified four suspicious packages in ...
マイナビニュース

npmパッケージに4つのマルウェア発見、銀行カードやDiscord情報盗み出す

Kaspersky Labは7月28日(米国時間)、「LofyLife: malicious npm packages steal Discord tokens and bank card data|Securelist」において、Discordトークンや銀行カードデータを窃取する悪意のあるnpm (Node Package ...
TechRadar

Fake Discord software could steal your account, infect your PC

Malware targeting Discord user accounts has been discovered by security researchers. Uncovered by MalwareHunterTeam, the new variant of the AnarchyGrabber malware modifies Discord client files in ...
TechRadar

Hackers have found a new way to hijack your Discord account

Cybercriminals have found a new way to steal your Discord account using the npm open-source repository alongside a couple of malware variants. As reported by Kaspersky, which first spotted the ...