Malicious npm package caught trying to steal sensitive Discord and browser files

Malicious code was hidden inside a JavaScript library for working with the "Fall Guys: Ultimate Knockout" game API.