A malicious package named 'pycord-self' on the Python package index (PyPI) targets Discord developers to steal authentication tokens and plant a backdoor for remote control over the system. The ...

When you create a Discord account, you’re assigned a token. Your Discord token is separate from your username, tag, and password, and allows whoever has it to log ...

Security researchers have discovered yet another supply chain attack campaign using malicious npm packages, this time targeting Discord users. Kaspersky said it identified four suspicious packages in ...

The malware seems like a silly coding lark at first, but further exploration shows it can wreak serious damage in follow-on attacks. The NitroRansomware malware strain is shaking up the ransomware ...

A serious security issue in Arc Raiders’ Discord integration has been uncovered by computer engineer Timothy D Meadows II, who posted a full write-up of the findings on his personal blog. These issues ...

Security researchers have warned of a new ransomware variant that not only encrypts the victim’s files but also attempts to steal data by enabling a Discord account takeover (ATO). Aimed at consumers, ...

While robust passwords help you secure your valuable online accounts, hardware-based two-factor authentication takes that security to the next level. Read now DevOps security firm JFrog discovered 17 ...

The lurking code-bombs lift Discord tokens from users of any applications that pulled the packages into their code bases. A series of malicious packages in the Node.js package manager (npm) code ...

TL;DR: Users who recently played Arc Raiders with Discord open may have unknowingly exposed private conversations and Discord login credentials. The game was writing this information to a local log ...