The Hacker News

npm, PyPI, and RubyGems Packages Found Sending Developer Data to Discord Channels

Researchers expose Discord webhook C2 in npm, PyPI, RubyGems; North Korean actors published 338 malicious npm packages with ...
Bleeping Computer

Dozens of malicious packages on NPM collect host and network data

60 packages have been discovered in the NPM index that attempt to collect sensitive host and network data and send it to a Discord webhook controlled by the threat actor. According to Socket’s Threat ...
Hosted on MSN

Expired Discord invite links are being used to try trick you into installing malware on your PC

Expired Discord invites and vanity URLs are being exploited to spread malware. A hacker can hijack expired invites by using vanity URLs in Discord. Malicious bots lead victims to fake verification ...