10 npm Packages Caught Stealing Developer Credentials on Windows, macOS, and Linux

Source: The Hacker News | Added:

Researchers have identified 10 malicious npm packages that steal information from users on Windows, Linux, and macOS systems. The malware employs multiple layers of obfuscation and uses a fake CAPTCHA to disguise its true intent while harvesting sensitive data.

---

Impact: npm packages

In the Wild: Yes

Age: Newly disclosed

Remediation: Not specified

Read Full Original Article →