A self-replicating attack led to a tidal wave of malicious packages in the NPM registry, targeting tokens for the tea.xyz ...
Goal is to steal Tea tokens by inflating package downloads, possibly for profit when the system can be monetized.
The Register on MSN
Crims poison 150K+ npm packages with token-farming malware
Amazon spilled the TEA Yet another supply chain attack has hit the npm registry in what Amazon describes as "one of the ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback