theregister

More packages poisoned in npm attack, but would-be crypto thieves left pocket change

During the two-hour window on Monday in which hijacked npm versions were available for download, malware-laced packages reached one in 10 cloud environments, according to Wiz researchers. But ...