The campaign uses four malicious packages to spread “Volt Stealer” and “Lofy Stealer” malware in the open source npm software package repository.

from Dark Reading https://ift.tt/Nw4e8VJ
via IFTTT