SECURITYTHE HACKER NEWS
Hijacked npm and Go Packages Use VS Code Tasks to Deploy Python Infostealer
Cybersecurity researchers discovered hijacked npm and Go packages that deploy a Python-based information stealer using VS Code tasks on Windows, Linux, and macOS systems. The attack bypasses common npm execution paths to avoid detection by security measures like those in npm v12.
Related Signal
Adjacent reporting
- IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks
- Four Malicious npm Packages Deliver Infostealers and Phantom Bot DDoS Malware
- SAP npm Packages Compromised by “Mini Shai-Hulud” Credential-Stealing Malware
- Lone attacker published 14 malicious npm packages mimicking popular OpenSearch, Elasticsearch libraries
- Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens
- Cache-poisoning caper turns TanStack npm packages toxic