JFrog Security's research team is actively monitoring open-source software repositories to identify and report security vulnerabilities and malicious packages, focusing on preventing software supply chain threats. Recently, they discovered 25 malicious packages in the npm repository, which were removed promptly by npm maintainers. These packages often masquerade as popular ones, such as colors.js and discord.js, to deceive users, with some even targeting other malware authors. Notable examples include the "lemaaa" package, which hijacks Discord tokens, and "markedjs" and "crypto-standarts," which are trojan versions of legitimate packages. The research highlights a trend of novice hackers exploiting npm for easy, high-return attacks, and the team anticipates this trend will continue as they detect numerous new malicious packages daily.