[SECURITY]■ STORY TIMELINE
JSCRAMBLER NPM PACKAGE BACKDOORED WITH MALWARE
Security firm Jscrambler disclosed that attackers published a malicious version of its npm package, which was downloaded nearly 1,500 times before detection. The compromised package contained infostealer malware targeting developer systems.
Bleeping Computer+0m
The Jscrambler client-side web security company disclosed that a threat actor published a malicious version of its npm p…