Malicious npm packages disguised as Solara executor stole Discord data, browser secrets, and crypto wallets
VPN Central [Unofficial]
March 15, 2026
Two malicious npm packages posed as tools related to the Solara Roblox executor and delivered a Windows-based infostealer that targeted Discord accounts, browser data, and cryptocurrency wallets, according to JFrog Security researchers. The packages, bluelite-bot-manager and test-logsmodule-v-zisko, have since been removed from npm. JFrog says both packages used a preinstall script to silently download and […]
The post Malicious npm packages disguised as Solara executor stole Discord data, browser secrets, and crypto wallets appeared first on VPN Central.
Discussion in the ATmosphere