Security researchers discover two malicious packages on npm that steal Base64-encrypted SSH keys from developer systems and store them on GitHub, highlighting the growing trend of cybercriminals exploiting open source package managers for their malicious software supply chain campaigns.
View full story…
Malicious Packages Found on npm Open Source Package Manager
