JFrog says six malicious npm packages used hidden install-time execution, JSONKeeper fetches, and sandbox checks to enable remote access.
Click the “Play” button or otherwise start the game so that the necessary files load. Look for a .js file in the Network list that looks like the game payload (e.g. game-v1.0.js, etc.). Save the JS ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results