*Malware in Disguise: Over 70 npm and VS Code Packages Exposed for Stealing Data and Crypto* *The Alarming Discovery* Security researchers have uncovered a massive threat to the cybersecurity world: over 70 malicious packages in the npm and VS Code registries. These packages are designed to steal sensitive data, including hostnames, IP addresses, DNS servers, and user directories. *The Malicious Packages: A Sneaky Approach* The malicious packages were published under different accounts and have been downloaded thousands of times. Some packages masquerade as legitimate plugins and utilities for popular JavaScript frameworks, but deploy destructive payloads once installed. These payloads can corrupt data, delete critical files, and crash systems. *The Threat Actors: Sophisticated and Elusive* The threat actors behind these malicious packages are sophisticated and use various tactics to evade detection. They have published both malicious and legitimate packages to create a facade of legitimacy. Some packages have been found to execute automatically, enabling recursive deletion of files and tampering with browser storage mechanisms. *The VS Code Extensions: A New Front in the Battle Against Malware* Malicious VS Code extensions have also been discovered, designed to siphon cryptocurrency wallet credentials by targeting Solidity developers on Windows. These extensions disguise themselves as legitimate, concealing harmful code within genuine features. *What You Can Do* - Be cautious when installing packages and extensions from open-source repositories. - Verify the authenticity of packages and extensions before installation. - Keep your systems and software up-to-date with the latest security patches. *Stay Vigilant* The discovery of these malicious packages and extensions highlights the growing threat of supply chain attacks. Stay informed and take steps to protect yourself and your organization from these evolving cybersecurity threats. *Key Takeaways:* - Over 70 malicious npm and VS Code packages have been discovered, designed to steal sensitive data and deploy destructive payloads. - The threat actors behind these packages are sophisticated and use various tactics to evade detection. - The malicious packages and extensions highlight the growing threat of supply chain attacks and the need for vigilance in the cybersecurity community.