Thousands of fake packages flood npm registry in major attack - here's what we know

Read post on techradar.com

The campaign could be in preparation for a malicious attack, or it could be a way to earn crypto tokens.