all InfoSec news
Fake Roblox packages target npm with Luna Grabber information stealing-malware
Malware Analysis, News and Indicators - Latest topics malware.news
ReversingLabs researchers have identified more than a dozen malicious packages on the npm public repository since the beginning of August, including multi-stage malicious packages that placed Luna Grabber, open source information stealing malware, on infected systems. In a replay of an attack uncovered two years ago, the malicious packages imitated the legitimate package noblox.js, a Node.js Roblox API wrapper used to write scripts that interact with the Roblox gaming platform.
This malicious campaign started at the beginning of August, …
attack august fake information information stealing luna malicious malicious packages malware npm open source packages public replay repository researchers reversinglabs roblox stage stealing systems target uncovered