When Coding Turns Criminal: The npm Package Heist

New malicious packages on the npm package registry are stealing sensitive developer information, with the cryptocurrency sector in the crosshairs. Published by the npm user malikrukd4732, these packages are capable of launching JavaScript that harvests valuable information.