Cybersecurity Alert: SSH Key Theft Embedded in Popular NPM Packages
ReversingLabs has identified two malicious modules in the widely-used NPM package registry, which utilize GitHub to store SSH keys encrypted in Base64 that had previously been pilfered from developers’ systems. The modules, named warbeast2000...