{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreihghqupe6gbry4v4nwcuc74ur5f3cs7km23k2w5h6twhujdw3oayq",
    "uri": "at://did:plc:6wtxqaikjf62unmnajbfbq5v/app.bsky.feed.post/3mh3u5pbodbe2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreifeuhmmu77jorysovjhbaoc3plksitdqckje32grkw6zzxbkvofyu"
    },
    "mimeType": "image/webp",
    "size": 4240
  },
  "path": "/malicious-npm-packages-disguised-as-solara-executor-stole-discord-data-browser-secrets-and-crypto-wallets/",
  "publishedAt": "2026-03-15T09:01:39.000Z",
  "site": "https://vpncentral.com",
  "tags": [
    "News",
    "Malicious npm packages disguised as Solara executor stole Discord data, browser secrets, and crypto wallets",
    "VPN Central"
  ],
  "textContent": "Two malicious npm packages posed as tools related to the Solara Roblox executor and delivered a Windows-based infostealer that targeted Discord accounts, browser data, and cryptocurrency wallets, according to JFrog Security researchers. The packages, bluelite-bot-manager and test-logsmodule-v-zisko, have since been removed from npm. JFrog says both packages used a preinstall script to silently download and […]\n\nThe post Malicious npm packages disguised as Solara executor stole Discord data, browser secrets, and crypto wallets appeared first on VPN Central.",
  "title": "Malicious npm packages disguised as Solara executor stole Discord data, browser secrets, and crypto wallets"
}