Attacker Accessed Dozens of Repositories After OAuth Token Theft

GitHub says npm is among the organizations affected

Read More: https://www.infosecurity-magazine.com/news/attacker-oauth-token-token-theft/