Threat Post

Malicious npm Code Packages Built for Hijacking Discord Servers

The lurking code-bombs lift Discord tokens from users of any applications that pulled the packages into their code bases. A series of malicious packages in the Node.js package manager (npm) code ...
Bleeping Computer

Hackers poison source code from largest Discord bot platform

The Top.gg Discord bot community with over 170,000 members has been impacted by a supply-chain attack aiming to infect developers with malware that steals sensitive information. The threat actor has ...
Dark Reading

Malicious npm Packages Scarf Up Discord Tokens, Credit Card Info

Four packages containing highly obfuscated malicious Python and JavaScript code were discovered this week in the Node Package Manager (npm) repository. According to a report from Kaspersky, the ...

Hackers Turn RedTiger Tool Into Malware Stealing Gamers’ Discord Accounts

A new cyber threat is sweeping through the gaming community — hackers have turned a legitimate cybersecurity testing tool ...
Fox News

Discord confirms vendor breach exposed user IDs in ransom plot

In 2025, it feels like cybercriminals are winning while the world's biggest data hoarders are losing. One by one, global giants are admitting they've been breached, from tech powerhouses like Google ...
Bleeping Computer

Discord client turned into a password stealer by updated malware

A threat actor updated the AnarchyGrabber trojan into a new version that steals passwords and user tokens, disables 2FA, and spreads malware to a victim's friends. AnarchyGrabber is a popular trojan ...