The packages are designed to steal from data from individuals using applications or websites where the malicious packages have been deployed.

A widespread campaign uses more than 24 malicious NPM packages loaded with JavaScript obfuscators to steal form data from multiple sites and apps

Attackers impersonated high-traffic NPM modules like umbrellajs and packages published by ionic.io

Researchers have exposed dozens of malicious npm packages that harvest sensitive data from end users of various applications and websites.

ReversingLabs discovered the threat actors behind IconBurst

Threat actor released decryption keys after abandoning malware to focus on cryptojacking