LofyLife: malicious npm packages steal Discord tokens and bank card data

28 July 2022

Title: LofyLife: malicious npm packages steal Discord tokens and bank card data

Published: Thu, 28 Jul 2022 12:00:41 +0000

Description: This week, we identified four suspicious packages in the Node Package Manager (npm) repository. All these packages contained highly obfuscated malicious Python and JavaScript code. We dubbed this malicious campaign “LofyLife”.

Read full article on SECURELIST.COM

Date:

28 July 2022

Categorie(s):

SECURELIST

Tag(s):

Data Theft, Incidents, Javascript, Malware Descriptions

Win 95, LastPass, Kubernetes, Sandworm, Bloomtech, Frontier, 911, Aaran Leyland… – SWN #37919 April 2024
5.3M World-Check records may be leaked; how to check your records19 April 2024
Sacramento airport goes no-fly after AT&T internet cable snipped19 April 2024
Active adversary report: Ransomware hit a ceiling, but security teams at risk for more pain19 April 2024
Akira takes in $42 million in ransom payments, now targets Linux servers19 April 2024