{ads}

npm, PyPI, and RubyGems Packages Found Sending Developer Data to Discord Channels

Written By Tuesday, 14 October 2025 Add Comment



October 14, 2025 at 12:39PM

Cybersecurity researchers have identified several malicious packages across npm, Python, and Ruby ecosystems that leverage Discord as a command-and-control (C2) channel to transmit stolen data to actor-controlled webhooks. Webhooks on Discord are a way to post messages to channels in the platform without requiring a bot user or authentication, making them an attractive mechanism for attackers to

from The Hacker News https://ift.tt/S1uKYCh

0 Response to "npm, PyPI, and RubyGems Packages Found Sending Developer Data to Discord Channels"

Post a Comment

Subscribe to: Post Comments (Atom)

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads