Malicious backdoored NPM package masqueraded as Twilio library for three days until it was turfed out
Dodgy JavaScript code downloaded hundreds of times
GitHub's NPM on Monday removed a JavaScript library called twilio-npm because it contained malicious code, which has become something of a recurring theme for the open-source JavaScript code registry....