Bleeping Computer

Malicious PyPi package steals Discord auth tokens from devs

A malicious package named 'pycord-self' on the Python package index (PyPI) targets Discord developers to steal authentication tokens and plant a backdoor for remote control over the system. The ...
TechCrunch

Discord users can now buy in-game items without leaving the platform

As Discord prepares for a potential IPO, the platform is launching new commerce features to enhance the gaming experience for users while also generating new revenue streams for developers. Announced ...
Infosecurity-magazine.com

New PyPI Package Zlibxjson Steals Discord, Browser Data

A dangerous package has been found on the PyPI repository. Named zlibxjson version 8.2, the malicious package was flagged by Fortinet’s AI-driven OSS malware detection system on July 3 2024, shortly ...
Threat Post

Malicious Npm Packages Tapped Again to Target Discord Users

Recent LofyLife campaign steals tokens and infects client files to monitor various user actions, such as log-ins, password changes and payment methods. Threat actors once again are using the node ...
Tech Digest

Hackers hijack Discord Accounts and infect gaming PCs with RedTiger tool

A new and potent threat is targeting Discord users and gamers, with hackers abusing the open-source penetration testing tool RedTiger to create a dangerous info-stealer. This malware is designed to ...
Krebs on Security

Discord Admins Hacked by Malicious Bookmarks

A number of Discord communities focused on cryptocurrency have been hacked this past month after their administrators were tricked into running malicious Javascript code disguised as a Web browser ...
Bleeping Computer

Hackers steal Discord accounts with RedTiger-based infostealer

Attackers are using the open-source red-team tool RedTiger to build an infostealer that collects Discord account data and payment information. The malware can also steal credentials stored in the ...