{ads}

Hijacked npm and Go Packages Use VS Code Tasks to Deploy Python Infostealer

Written By Sunday, 28 June 2026 Add Comment



June 29, 2026 at 11:06AM

Cybersecurity researchers have uncovered two hijacked npm packages and a cluster of Go packages that are designed to deploy a Python-based information stealer on compromised Windows, Linux, and macOS hosts. "This attack avoids the most common npm execution paths through lifecycle scripts, perhaps in an attempt to remain 'compatible' with npm v12's security hardenings," JFrog said in a

from The Hacker News https://ift.tt/8FbBjlC

0 Response to "Hijacked npm and Go Packages Use VS Code Tasks to Deploy Python Infostealer"

Post a Comment

Subscribe to: Post Comments (Atom)

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads