Security News npm, PyPI, and RubyGems Packages Found Sending Developer Data to Discord Channels TheHackerNews Daniel Bender 14 Oct 2025 Researchers expose Discord webhook C2 in npm, PyPI, RubyGems; North Korean actors published 338 malicious npm packages with 50k+ downloads.
