Et ça recommence :

Anatomy of a Billion-Download NPM Supply-Chain Attack

What happened?
A supply chain attack compromised the NPM account of developer qix, leading to malicious versions of dozens of high-impact packages being published.

What was the impact?
The combined weekly downloads of the affected packages exceed one billion, posing a significant threat to the JavaScript ecosystem.

What does the malware do?
The payload is a crypto-clipper that steals funds by swapping wallet addresses in network requests and directly hijacking crypto transactions.

How to protect yourself:
Immediately audit your project's dependencies. Pin all affected packages to their last known-safe versions using the overrides feature in package.json.