Malicious ESLint Packages Steal Software Registry Login Tokens

Following the compromise of an ESLint maintainer’s account last week, malicious packages that attempted to steal login tokens from the npm software registry were published without authorization.

read more

Read more: Malicious ESLint Packages Steal Software Registry Login Tokens

Story added 16. July 2018, content source with full text you can find at link above.