From zdnet.com
![Discord](https://zdnet1.cbsistatic.com/hub/i/2020/11/09/d1f3d421-c829-4610-9a23-23522de4305f/discord.png)
Security researchers at Sonatype have discovered today an npm package (JavaScript library) that contains malicious code designed to steal sensitive files from a user’s browsers and Discord application.
From zdnet.com
Security researchers at Sonatype have discovered today an npm package (JavaScript library) that contains malicious code designed to steal sensitive files from a user’s browsers and Discord application.