Over 70 Malicious npm and VS Code Packages Found Stealing Data and Crypto

Over 70 malicious npm and Visual Studio Code (VS Code) packages were discovered, stealing data and cryptocurrency. The packages, published under three accounts, harvested hostnames, IP addresses, and user directories, transmitting the information to a Discord webhook. Additionally, eight npm packages disguised as helper libraries deployed destructive payloads, and three VS Code extensions targeted Solidity developers, stealing cryptocurrency wallet credentials.