Reconnaissance Campaign Active on NPM Repository

A hacking campaign is spreading malicious reconnaissance scripts through the npm repository, exfiltrating data like hostnames, IP addresses, and DNS configurations. The scripts, found in 60 packages, target Windows, macOS, and Linux systems and are likely a precursor to larger attacks. Socket reported the packages to npm but noted they remain live.