Malicious npm Packages Target Solana Users in Sophisticated Crypto Theft Campaign

Security researchers uncover a sophisticated attack using fake npm packages to steal Solana wallet credentials through Gmail's SMTP servers. The multi-platform campaign includes malicious GitHub repositories and packages with destructive capabilities, highlighting critical risks in the cryptocurrency software supply chain.