The Hacker News

npm, PyPI, and RubyGems Packages Found Sending Developer Data to Discord Channels

Researchers expose Discord webhook C2 in npm, PyPI, RubyGems; North Korean actors published 338 malicious npm packages with ...
HotHardware

How LofyGang Is Using Discord, YouTube And GitHub In A Massive Credential Stealing Attack

Researchers at the cybersecurity firm Checkmarx have managed to map out a complex web of criminal activity that all ties back to a threat actor known as LofyGang. This group of cybercriminals caters ...
Hackaday

Cruising GitHub For Slack Webhook Tokens

GitHub is an incredibly powerful tool for sharing source code, and its value to the modern hacker can’t be overstated. But there’s at least one downside to effortlessly sharing your source: it’s now ...
Opinion

The Discord Hack Sounds Really, Really Bad

I got a strange email from Discord last Friday at the very end of the work day informing me of “a recent security incident on September 20 involving your personal data.” It said personal info related ...