{"id":4435,"date":"2025-05-26T14:29:11","date_gmt":"2025-05-26T14:29:11","guid":{"rendered":"https:\/\/news.cybertechworld.co.in\/index.php\/2025\/05\/26\/over-70-malicious-npm-and-vs-code-packages-found-stealing-data-and-crypto\/"},"modified":"2025-05-26T14:29:11","modified_gmt":"2025-05-26T14:29:11","slug":"over-70-malicious-npm-and-vs-code-packages-found-stealing-data-and-crypto","status":"publish","type":"post","link":"https:\/\/news.cybertechworld.co.in\/index.php\/2025\/05\/26\/over-70-malicious-npm-and-vs-code-packages-found-stealing-data-and-crypto\/","title":{"rendered":"Over 70 Malicious npm and VS Code Packages Found Stealing Data and Crypto"},"content":{"rendered":"<p>\u200bAs many as 60 malicious npm packages have been discovered in the package registry with malicious functionality to harvest hostnames, IP addresses, DNS servers, and user directories to a Discord-controlled endpoint.<br \/>\nThe packages, published under three different accounts, come with an install\u2011time script that&#8217;s triggered during npm install, Socket security researcher Kirill Boychenko said in a\u00a0As many as 60 malicious npm packages have been discovered in the package registry with malicious functionality to harvest hostnames, IP addresses, DNS servers, and user directories to a Discord-controlled endpoint.<br \/>\nThe packages, published under three different accounts, come with an install\u2011time script that&#8217;s triggered during npm install, Socket security researcher Kirill Boychenko said in a\u00a0\u00a0The Hacker News<\/p>","protected":false},"excerpt":{"rendered":"<p>\u200bAs many as 60 malicious npm packages have been discovered in the package registry with malicious functionality to harvest hostnames, IP addresses, DNS servers, and user directories to a Discord-controlled endpoint. The packages, published under three different accounts, come with an install\u2011time script that&#8217;s triggered during npm install, Socket security researcher Kirill Boychenko said in&hellip;&nbsp;<a href=\"https:\/\/news.cybertechworld.co.in\/index.php\/2025\/05\/26\/over-70-malicious-npm-and-vs-code-packages-found-stealing-data-and-crypto\/\" class=\"\" rel=\"bookmark\">Read More &raquo;<span class=\"screen-reader-text\">Over 70 Malicious npm and VS Code Packages Found Stealing Data and Crypto<\/span><\/a><\/p>\n","protected":false},"author":0,"featured_media":4436,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"neve_meta_sidebar":"","neve_meta_container":"","neve_meta_enable_content_width":"","neve_meta_content_width":0,"neve_meta_title_alignment":"","neve_meta_author_avatar":"","neve_post_elements_order":"","neve_meta_disable_header":"","neve_meta_disable_footer":"","neve_meta_disable_title":"","_themeisle_gutenberg_block_has_review":false,"footnotes":""},"categories":[1],"tags":[],"_links":{"self":[{"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/posts\/4435"}],"collection":[{"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/comments?post=4435"}],"version-history":[{"count":0,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/posts\/4435\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/media\/4436"}],"wp:attachment":[{"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/media?parent=4435"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/categories?post=4435"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news.cybertechworld.co.in\/index.php\/wp-json\/wp\/v2\/tags?post=4435"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}