JavaScript packages with billions of downloads were injected with malicious code in world's largest supply chain hack, geared to steal crypto — a phishing email is all it ...

JavaScript packages with billions of downloads were compromised by an unknown threat actor looking to steal cryptocurrency.
CSOonline

JavaScript Botnet Code a Handy Hacking Tool

Software that could be used to turn a Web browser into an unwitting hacker’s tool has been posted to the Internet, after it was downloaded by a quick-thinking attendee at last month’s Shmoocon hacker ...
Crypto on The Street on MSN

Ledger CTO warns crypto users after major JavaScript account hack

Charles Guillemet says a phishing led supply-chain breach could have become a systemic disaster for crypto users.