Checkmarx researchers have detected a unique supply chain attack within the NPM ecosystem that uses the Ethereum blockchain.

A global operation known as EMERALDWHALE has stolen over 15,000 credentials by exploiting exposed Git configuration files.