Bleeping Computer

PyPI packages caught stealing credit card numbers, Discord tokens

The Python Package Index (PyPI) registry has removed several Python packages this week aimed at stealing users' credit card numbers, Discord tokens, and granting code execution capabilities to ...
HotHardware

Arc Raiders Logged Private Discord DMs And Tokens In Plaintext, Researcher Finds

A serious security issue in Arc Raiders’ Discord integration has been uncovered by computer engineer Timothy D Meadows II, who posted a full write-up of the findings on his personal blog. These issues ...
Bleeping Computer

Malicious PyPi package steals Discord auth tokens from devs

A malicious package named 'pycord-self' on the Python package index (PyPI) targets Discord developers to steal authentication tokens and plant a backdoor for remote control over the system. The ...
Dark Reading

Malicious npm Packages Scarf Up Discord Tokens, Credit Card Info

Four packages containing highly obfuscated malicious Python and JavaScript code were discovered this week in the Node Package Manager (npm) repository. According to a report from Kaspersky, the ...
TechSpot

Arc Raiders bug was saving Discord private chats and login tokens in plaintext files

TL;DR: Users who recently played Arc Raiders with Discord open may have unknowingly exposed private conversations and Discord login credentials. The game was writing this information to a local log ...