Socket researchers said the malware-ridden packages were collectively downloaded over 330 times. GitHub removed all of the malicious packages Wednesday.
First seen on cyberscoop.com
Jump to article: cyberscoop.com/lazarus-group-north-korea-malicious-npm-packages-socket/
