Security News > 2018 > July > Now Pushing Malware: NPM package dev logins slurped by hacked tool popular with coders

Tokens killed after eslint-scope JavaScript utility compromised An unfortunate chain reaction was averted today after miscreants tampered with a widely used JavaScript programming tool to steal other developers' NPM login tokens.…

News URL

http://go.theregister.com/feed/www.theregister.co.uk/2018/07/12/npm_eslint/