Malicious npm packages found with hidden endpoints that wipe systems on command. Devs warned to check dependencies for express-api-sync, system-health-sync-api.
First seen on hackread.com
Jump to article: hackread.com/backdoors-npm-packages-attackers-wipe-systems/
