Cybersecurity analysts have identified multiple cryptocurrency packages on the npm registry that have been compromised to extract sensitive data like environment variables from affected systems.
“Several of these packages have existed on npmjs.com for more than 9 years and offer authentic features to blockchain developers,” noted Sonatype investigator Ax Sharma. “Nevertheless, […] the most recent