Roblox developers have been targeted by a resurgence of malicious packages on the npm repository, deploying the Luna Grabber malware. This campaign raises concerns for software supply chain security. The malicious packages mimic the legitimate 'noblox.js' package, deceiving developers into downloading compromised packages. The attackers replicate code from 'noblox.js' while embedding malicious information-stealing functions. This is similar to a previous attack in 2021. The malicious packages now imitate the original 'noblox.js' even more convincingly and carry a post-installation script with a malicious payload. Luna Grabber is the weapon of choice for the attackers, offering a customizable and detailed instructions on GitHub on how to compile a malicious executable. This campaign highlights the vulnerability of open-source repositories and the importance of robust supply chain security practices. #maliciouspackages #RobloxDevelopers

https://cybersecuritynews.com/roblox-developers-targeted/