{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreidr3vdofprqidxqaqtsu6kfw5wezudvpsyeite4umntuuxipluhpa",
    "uri": "at://did:plc:6wtxqaikjf62unmnajbfbq5v/app.bsky.feed.post/3mozlzuvpzcn2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreibxvkhrztgfbyp35mctsczpdrgc6wokamm3qiiaet6kmyh5r5426a"
    },
    "mimeType": "image/webp",
    "size": 24208
  },
  "path": "/malicious-npm-packages-deliver-windows-rat-disguised-as-postcss-tools/",
  "publishedAt": "2026-06-23T14:09:00.000Z",
  "site": "https://vpncentral.com",
  "tags": [
    "News",
    "Malicious npm Packages Deliver Windows RAT Disguised as PostCSS Tools",
    "VPN Central"
  ],
  "textContent": "Security researchers found a new npm malware campaign that targets Windows developers through packages disguised as PostCSS-related utilities. The main package, postcss-minify-selector-parser, posed as a plausible CSS selector parsing tool and depended on the real postcss-selector-parser package. According to JFrog Security Research, the package ultimately led to a multi-stage Windows remote access trojan capable of […]\n\nThe post Malicious npm Packages Deliver Windows RAT Disguised as PostCSS Tools appeared first on VPN Central.",
  "title": "Malicious npm Packages Deliver Windows RAT Disguised as PostCSS Tools"
}