A malware campaign has been discovered within the npm package os-info-checker-es6. Initially appearing benign after being published in March 2025, it quickly evolved, using complex Unicode steganography and evasion techniques to avoid detection. It gained further sophistication in May, using Google Calendar as an intermediary dropper and executed payloads. The malware has been downloaded 655 times weekly, indicating its potential reach within the ecosystem.
PupkinStealer Attacks Windows System to Steal Login Credentials & Desktop Files
Cybersecurity researchers have discovered a new information-stealing malware named PupkinStealer. The malware, first identified in April 2025, steals browser credentials, messaging app sessions, and desktop
