Self-replicating Shai-hulud worm spreads token stealing malware on npm | ReversingLabs | ReversingLabs

RL researchers have detected the first self-replicating worm compromising popular npm packages with cloud token-stealing malware.