SSH keys stolen by stream of malicious PyPI and NPM packagesbleepingcomputer.com19 pointsmikece3 years ago