Cybersecurity researchers have discovered a malicious package named « os-info-checker-es6 » that disguises itself as an operating system information utility to stealthily drop a next-stage payload onto compromised systems.
« This campaign employs clever Unicode-based steganography to hide its initial malicious code and utilizes a Google Calendar event short link as a dynamic dropper for its final

Cybersecurity researchers have discovered a malicious package named « os-info-checker-es6 » that disguises itself as an operating system information utility to stealthily drop a next-stage payload onto compromised systems.
« This campaign employs clever Unicode-based steganography to hide its initial malicious code and utilizes a Google Calendar event short link as a dynamic dropper for its final