{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreigcd4icc4lmck6cavcurowtx6tiq3upxejrmhmmysz2r3y6gpcdfu",
    "uri": "at://did:plc:6wtxqaikjf62unmnajbfbq5v/app.bsky.feed.post/3mg7hccmbhte2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreidgjuguhusdepvbxmlhxpzvqaijcrhxgfspoquwb7f53f7zt6ptci"
    },
    "mimeType": "image/jpeg",
    "size": 44344
  },
  "path": "/stegabin-uses-malicious-npm-packages-to-steal-developer-credentials-through-a-hidden-multi-stage-payload/",
  "publishedAt": "2026-03-03T19:53:54.000Z",
  "site": "https://vpncentral.com",
  "tags": [
    "News",
    "StegaBin uses malicious npm packages to steal developer credentials through a hidden multi-stage payload",
    "VPN Central"
  ],
  "textContent": "A fresh software supply chain campaign is targeting developers through npm packages that appear harmless at first glance. Security reporting published around March 2 and March 3 says the operation, now being tracked as “StegaBin,” involved 26 malicious npm packages that used install-time scripts, hidden Pastebin data, and Vercel-hosted infrastructure to deploy a credential stealer […]\n\nThe post StegaBin uses malicious npm packages to steal developer credentials through a hidden multi-stage payload appeared first on VPN Central.",
  "title": "StegaBin uses malicious npm packages to steal developer credentials through a hidden multi-stage payload"
}