npm Supply Chain Attack Hits 50+ Packages With Self-Spreading Worm and Rust-Based Stealer
Attackers compromised 50+ npm packages to distribute IronWorm, a self-spreading worm, and a Rust-based stealer with eBPF rootkit capabilities. The malware targets AI API keys and uses stolen credentials to propagate further across the registry.