Compromised jscrambler 8.14.0 npm Release Drops Rust Infostealer During Install
The npm package jscrambler version 8.14.0 was compromised, dropping a Rust-based infostealer during installation. The malicious release executes a payload that steals sensitive data from the infected system. Users who installed this version are at risk of credential theft and data exfiltration.
Compromised npm packages can lead to credential theft and data breaches in developer environments.


