ZDNet

Npm package caught stealing sensitive Discord and browser files

Security researchers at Sonatype have discovered today an npm package (JavaScript library) that contains malicious code designed to steal sensitive files from a user's browsers and Discord application ...
Engadget

Discord is switching to expiring links for files shared off-platform

Discord is changing its approach to file hosting in an effort to crack down on malware. The platform will begin using temporary file links that will expire after 24 hours for user content shared ...
ZDNet

Malicious npm package caught trying to steal sensitive Discord and browser files

The npm security team has removed a malicious JavaScript library from the npm portal that was designed to steal sensitive files from an infected users' browser and Discord application. The malicious ...