Security researchers claim to have discovered the first-ever open source supply chain attack combining blockchain technology with traditional attack vectors. Checkmarx said it found the malicious ājest-fet-mockā package on npm.
Source: Infosecurity