top | item 27907428 Groundhog day: NPM package caught stealing browser passwords 2 points| OMGWTF | 4 years ago |blog.secure.software discuss order hn newest theamk|4 years ago > This detection was assigned to an embedded Windows executable file...I think this should be enough to declare it "malware", no? Why would one put a Windows (or any other) executable into repository for Javascript packages except to be malicious?
theamk|4 years ago > This detection was assigned to an embedded Windows executable file...I think this should be enough to declare it "malware", no? Why would one put a Windows (or any other) executable into repository for Javascript packages except to be malicious?
theamk|4 years ago
I think this should be enough to declare it "malware", no? Why would one put a Windows (or any other) executable into repository for Javascript packages except to be malicious?