NPM Packages Used by Cryptocurrency Exchanges Compromised to Deliver Infostealers
The packages in question were published from the npm account of a dYdX staff member and found to contain illicit code that would run infostealers on a system when installed.