Security News > 2024 > March > Hackers poison source code from largest Discord bot platform
The Top.gg Discord bot community with over 170,000 members has been impacted by a supply-chain attack aiming to infect developers with malware that steals sensitive information.
One of the more recent victims of the attacker is Top.gg, a popular search-and-discovery platform for Discord servers, bots, and other social tools geared towards gaming, boosting engagement, and improving functionality.
According to the researchers, the attacker's activity started back in November 2022, when they first uploaded malicious packages on the Python Package Index.
In early 2024, the attackers set up a fake Python package mirror at "Files[.]pypihosted[.]org," which is a typosquatting attempt to mimic the authentic "Files.pythonhosted.org" where the artifact files of PyPI packages are stored.
This fake mirror was used to host poisoned versions of legitimate packages, such as an altered version of the popular "Colorama" package, with the goal of tricking users and development systems into using this malicious source.
Japan warns of malicious PyPi packages created by North Korean hackers.