Cybersecurity researchers have found a malicious package deal named “os-info-checker-es6” that disguises itself as an working system info utility to stealthily drop a next-stage payload onto compromised programs.
“This marketing campaign employs intelligent Unicode-based steganography to cover its preliminary malicious code and makes use of a Google Calendar occasion brief hyperlink as a dynamic dropper for its ultimate
Malicious npm Bundle Leverages Unicode Steganography, Google Calendar as C2 Dropper
