Open-source package repositories, including NPM, PyPi, and NuGet, have been flooded by a massive wave of 144,294 malicious packages.
These packages were linked to an automated phishing operation using 90 domains that hosted over 65,000 phishing pages.