A new attack targeting cryptocurrency users has emerged through the npm registry, where threat actors upload malicious packages. These packages, masquerading as useful tools, secretly inject harmful …