Researchers have disclosed a new large-scale cryptocurrency mining campaign targeting the NPM JavaScript package repository. The malicious activity, attributed to a software supply chain threat actor dubbedCuteBoi, involves an array of 1,283 rogue modules that were published in an automated fashion from over 1,000 different user accounts. “This was done using automation which includes the