Mar 27 2025 Infostealer campaign compromises 10 npm packages, targets devs

Source

Ten npm packages were suddenly updated with malicious code yesterday to steal environment variables and other sensitive data from developers' systems. [...]