FortiGuard Labs has identified nine sets of malicious NPM packages, each with its own unique style of code. FortiGuard Labs has uncovered a series of malicious packages concealed within NPM (Node Package Manager), the primary software repository for JavaScript developers.
Source: HackRead