A malicious package named 'pycord-self' on the Python package index (PyPI) targets Discord developers to steal authentication tokens and plant a backdoor for remote control over the system.

Clyde is already a popular app on Discord, responding to console-style /slash commands and messaging users when they use an app or instruction incorrectly.