The campaign spans npm, Packagist, Go, and Chrome, using obfuscated JavaScript loaders and VS Code tasks to deliver malware.
Microsoft latest release of the Edge browser adds a much-requested feature for users working within Google's web ecosystem.