Malicious PyPI, npm, and Ruby Packages Exposed in Ongoing Open-Source Supply Chain Attacks

Several malicious packages have been uncovered across the npm, Python, and Ruby package repositories. The packages drain funds from cryptocurrency wallets, erase entire codebases after installation, and exfiltrate Telegram API tokens.