Crooks deployed malicious ESLint packages that steal software registry login tokens

Crooks deployed malicious ESLint packages that steal software registry login tokens Hackers compromised the npm account of an ESLint maintainer and published malicious versions of eslint packages to the npm registry. Crooks compromised an ESLint maintainer’s account last week and uploaded malicious packages that attempted to steal login tokens from the npm software registry. npm is the package manager for JavaScript and the world’s largest software registry. ESLint is open […] The post Crooks deployed malicious ESLint packages that steal software registry login tokens appeared first on Security Affairs. Read More At -> https://blog.cripperz.sg/2018/07/17/crooks-deployed-malicious-eslint-packages-that-steal-software-registry-login-tokens/