NPM Package Masquerading as Popular Material Tailwind Library To Install Malicious Code

Researchers at ReversingLabs discovered a malicious npm package masquerading as the Material Tailwind library. Their finding highlights a new trend for threat actors to install malicious code, dubbed impostor packages, say the researchers.

Read full article on InfoQ