Hackread.com<p>🚨 A malicious npm package, crypto-encrypt-ts, impersonating <a href="https://mstdn.social/tags/CryptoJS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CryptoJS</span></a> was downloaded 1,900+ times before being caught. It targets crypto wallets and <a href="https://mstdn.social/tags/MongoDB" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>MongoDB</span></a> data, with code suggesting Turkish origins.</p><p>Read more: <a href="https://hackread.com/npm-malware-crypto-wallets-mongodb-turkey-code/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">hackread.com/npm-malware-crypt</span><span class="invisible">o-wallets-mongodb-turkey-code/</span></a></p><p><a href="https://mstdn.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberSecurity</span></a> <a href="https://mstdn.social/tags/CyberAttack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberAttack</span></a> <a href="https://mstdn.social/tags/NPM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NPM</span></a> <a href="https://mstdn.social/tags/Crypto" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Crypto</span></a> <a href="https://mstdn.social/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>InfoSec</span></a></p>