A malicious Python package, ‘discordpydebug’, disguised as a debugging tool for Discord developers, was discovered to be a remote access trojan. Targeting Discord bot developers, it accumulated over 11,000 downloads, creating a backdoor to systems for unauthorized access. Its stealthy design allowed it to evade many security measures, raising concerns about open-source supply chain vulnerabilities.
Kull wahad! Shai Halud worm infects more than a hundred NPM code packages – cybersecurityconnect.com.au
Kull wahad! Shai Halud worm infects more than a hundred NPM code packages cybersecurityconnect.com.au
