all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Fake 'distube-config' npm package drops Windows info-stealing malware

Add to bookmarks
Jan. 24, 2024, 3:10 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news




Sonatype has identified two npm packages distube-config and discordyt that typosquat open source packages like Discord modules, in an attempt to infect Windows users with a Trojan. Our security researcher, Juan Aguirre, who analyzed the malware shares some insights.


Article Link: Fake 'distube-config' npm package drops Windows info-stealing malware


1 post - 1 participant


Read full topic

article config discord drops fake infect info info-stealing malware insights link malware modules npm npm package open source open source packages package packages researcher security security researcher sonatype stealing trojan windows

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

“Dirty stream” attack: Discovering and mitigating a common vulnerability pattern in Android apps 29 minutes ago | malware.news
android android apps application applications +24
Microsoft named overall leader in KuppingerCole Leadership Compass for ITDR 30 minutes ago | malware.news
article blog community compass +11
Release Notes: YARA Search, New Rules, Config Extractors, and More an hour ago | malware.news
any.run april config data +22
2023 Activities Summary of SectorJ groups (KOR) 2 hours ago | malware.news
ransomware
ISC Stormcast For Thursday, May 2nd, 2024 https://isc.sans.edu/podcastdetail/8964, (Thu, May 2nd) 4 hours ago | malware.news
topic
Verizon’s 2024 Data Breach Investigations Report: 5 key takeaways 6 hours ago | malware.news
ai threats article breach data +16
Analysis of TargetCompany’s Attacks Against MS-SQL Servers (Mallox, BlueSky Ransomware) 7 hours ago | malware.news
ahnlab analysis asec attacks +21
4 Easy Ways to Find Free Wi-Fi Anywhere You Go 7 hours ago | malware.news
can challenge coffee easy +10
AI's Offensive & Defensive Impacts 8 hours ago | malware.news
alto blog cybersecurity defensive +11

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Application Security Engineer - Remote Friendly

@ Unit21 | San Francisco,CA; New York City; Remote USA;
View on infosec-jobs.com

Cloud Security Specialist

@ AppsFlyer | Herzliya
View on infosec-jobs.com

Malware Analysis Engineer - Canberra, Australia

@ Apple | Canberra, Australian Capital Territory, Australia
View on infosec-jobs.com

Product CISO

@ Fortinet | Sunnyvale, CA, United States
View on infosec-jobs.com

Manager, Security Engineering

@ Thrive | United States - Remote
View on infosec-jobs.com
View more jobs