Malicious npm package delivers r77 rootkit via typosquatting attack. Malware disguised as legitimate package "node-hide-console-window." Over 700 downloads before detection. DiscordRAT 2.0 used for control of infected hosts. r77 rootkit conceals files and processes on infected machine. Growing trend of using open-source projects for malware distribution. Developers must be cautious when integrating open-source packages. #maliciousnpm #r77Rootkit #typosquatting #DiscordRAT #open-source #malwaredistribution

https://cybersecuritynews.com/malicious-npm-package-deliver-r77-rootkit/