LofyGang Uses 100s of Malicious NPM Packages to Poison Open Source Software

07-Oct-22

The organisation has been active for over a year, marketing their tools in hacker forums, collecting credit card information, and exploiting open source software holes with typosquatting tactics. The LofyGang threat organisation steals credit card data, gaming and streaming accounts, and then distributes stolen credentials and loot in underground hacker forums utilising over 200 malicious NPM packages with thousands of instals. Read More…