Malicious NPM packages target PayPal users

Malicious NPM packages, uploaded in early March, target PayPal users by stealing credentials and hijacking cryptocurrency transfers. The packages, disguised as legitimate PayPal-related tools, collect system data and exfiltrate it to attacker-controlled servers.