10 npm Packages Caught Stealing Developer Credentials on Windows, macOS, and Linux

Cybersecurity researchers have identified 10 malicious npm packages that steal developer credentials across Windows, Linux, and macOS. These packages, disguised as popular libraries, employ obfuscation and fake CAPTCHAs to harvest sensitive information from browsers and system keyrings.