🚨 NPM supply chain attack 🚨 Today, hackers compromised a package maintainer’s account via a phishing email, injecting malware into popular NPM packages with 2.6B+ weekly downloads. After taking control, the threat actors updated the packages and injected malicious code acting as a browser-based interceptor that can hijack network traffic and application APIs. The malware intercepts browser-based crypto transactions, rewriting wallet destinations to attacker-controlled addresses. Despite the scale of the breach, the attacker seems to have only stolen a few dollars. Still, it’s a clear reminder that operational security should be a top priority… 👉 Make sure to run this detector immediately from @sec_phoenix to see if you were affected: github.com/Security-Phoenix-de...… Stay safe. 🛡️