Supply Chain Attack Targets NPM via Gluestack Packages

A supply chain attack has hit NPM after 15 popular packages from Gluestack, totaling more than 950,000 weekly downloads, were compromised to include malicious code acting as a Remote Access Trojan (RAT). The affected packages were modified to include a malicious script that allows attackers to take control of infected systems. This attack has significant implications for users of these packages, who are now exposed to major security risks.