Malicious SAP-Linked npm Packages Target Crypto Wallets and Cloud Credentials
Four compromised npm packages tied to SAP’s CAP ecosystem were found stealing crypto wallet data, cloud credentials, and SSH keys. Security researchers warn developers and enterprises to audit dependencies, rotate secrets, and inspect CI/CD logs immediately.








