New PhantomRaven NPM attack wave steals dev data via 88 packages

New attack waves from the 'PhantomRaven' supply-chain campaign are hitting the npm registry, with dozens of malicious packages that exfiltrate sensitive data from JavaScript developers.
The New York Times

The Best Smart Water-Leak Detector

We independently review everything we recommend. When you buy through our links, we may earn a commission. Learn more› By Kathryn Rath Kathryn Rath is a writer covering audio, video, and smart-home ...