The discordi.js
package is malware that attempts to discover and exfiltrate a user’s Discord credentials, sending them to pastebin.
All versions have been unpublished from the npm registry.
Do not install / use this module. It has been unpublished from the npm registry but may exist in some caches. Any users that logged into Discord using this library will need to change their credentials.
CPE | Name | Operator | Version |
---|---|---|---|
discordi.js | le | 14.0.3 |