Threat Post

Malicious npm Code Packages Built for Hijacking Discord Servers

The lurking code-bombs lift Discord tokens from users of any applications that pulled the packages into their code bases. A series of malicious packages in the Node.js package manager (npm) code ...
International Business Times

Hackers Expose Discord Age Verification System Issue After Persona Frontend Code Left Wide Open

Hackers have revealed that parts of Discord's new age verification system were effectively exposed to the public after the frontend code for third-party vendor Persona was left accessible on the open ...
Dark Reading

'BlazeStealer' Python Malware Allows Complete Takeover of Developer Machines

Malicious Python packages masquerading as legitimate code obfuscation tools are targeting developers via the PyPI code repository. Focusing on those interested in code obfuscation is a savvy choice ...