Hijacked npm and Go Packages Use VS Code Tasks to Deploy Python Infostealer

The Hacker News·29. Juni 2026, 05:36

Originalartikel lesen bei The Hacker News

Cybersecurity researchers have uncovered two hijacked npm packages and a cluster of Go packages that are designed to deploy a Python-based information stealer on compromised Windows, Linux, and macOS hosts. "This attack avoids the most common npm execution paths through lifecycle scripts, perhaps...

MITRE ATT&CK Kill Chain (1 Techniken)

Execution

T1059.006

Python

Vollständigen Artikel lesen bei The Hacker News

MITRE ATT&CK Kill Chain (1 Techniken)

Verwandte Artikel