Fetching latest headlines…
Hijacked npm and Go Packages Use VS Code Tasks to Deploy Python Infostealer
NORTH AMERICA
πŸ‡ΊπŸ‡Έ United Statesβ€’June 29, 2026

Hijacked npm and Go Packages Use VS Code Tasks to Deploy Python Infostealer

0 views0 likes0 comments
Originally published byThe Hacker News
Cybersecurity researchers have uncovered two hijacked npm packages and a cluster of Go packages that are designed to deploy a Python-based information stealer on compromised Windows, Linux, and macOS hosts. "This attack avoids the most common npm execution paths through lifecycle scripts, perhaps in an attempt to remain 'compatible' with npm v12's security hardenings," JFrog said in a

Comments (0)

Sign in to join the discussion

Be the first to comment!