Hackers Use Fake Gemini npm Package to Steal Tokens From Claude, Cursor, and Other AI Tools
07/04/2026-22:46 07/04/2026-22:50 מחשבים וטכנולוגיה Cyber Security News דיווח
.webp)
A new supply chain attack has surfaced targeting software developers who work with AI coding tools. On March 20, 2026, a threat actor published a malicious npm package named gemini-ai-checker under the account gemini-check, presenting it as a simple
.webp){kind=icon}
.webp){kind=icon}
