Investigation reveals the phishing attack was conducted via a spoofed email purporting to originate from npm support, urging the maintainer to reset two-factor authentication credentials. Upon ...