Supply Chain Attack Targets NPM, Compromising Popular Gluestack Packages

A supply chain attack targeted NPM, compromising 16 popular Gluestack packages, including 'react-native-aria', with over 950,000 weekly downloads. The attack began on June 6 at 16:33 EST with a malicious update. Researchers from Aikido Security discovered this attack.