🚨 Hackers hijacked popular npm packages using phishing emails that mimicked npm support.
They published malware directly—no GitHub commits, no PRs.
One version tries to run a DLL for remote code execution.
CheckDot is SAFU research on CheckDot
Disclaimer: Includes third-party opinions. No financial advice. May include sponsored content. See T&Cs.
112
0
Explore the latest crypto news
⚡️ Be a part of the latests discussions in crypto
💬 Interact with your favorite creators
👍 Enjoy content that interests you
Email / Phone number