North Korean-linked campaign publishes 26 malicious npm packages hiding C2 in Pastebin, deploying credential stealers & RAT via 31 Vercel deployments.
Chrome users have been warned that an tool claiming to search the screen with Google Lens was, in fact, a credential stealer.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results