Over 70 Malicious npm and VS Code Packages Found St

As many as 60 malicious npm packages have been discovered. The packages harvest hostnames, IP addresses, DNS servers, and user directories to a Discord-controlled endpoint. They come with an installtime script that's triggered during npm install.