SolyxImmortal is a Python-based malware designed to steal sensitive information from Windows users. It collects credentials, documents, and keystrokes while maintaining a low profile by using Discord webhooks for data exfiltration. The malware ensures persistence on infected systems without requiring administrative privileges.

This article details how ten malicious npm packages use typosquatting techniques to execute credential harvesting malware on developers' systems. It describes the multi-stage process, including automatic execution, IP tracking, and extensive data extraction methods targeting various operating systems.

Researchers have identified four new phishing kits—BlackForce, GhostFrame, InboxPrime AI, and Spiderman—that enable large-scale credential theft. These kits utilize advanced techniques, including AI automation and evasion strategies, to deceive users and bypass security measures.