Microsoft spots malicious npm package stealing data from UNIX systems
The security team at npm (Node Package Manager), the de-facto package manager for the JavaScript ecosystem, has taken down today a malicious package that was caught stealing sensitive information from UNIX systems.
Read more...