Half of npm Packages Vulnerable to Old-School Weapon: the ‘Shift’ Key

For years, hackers could have tricked enterprises into downloading malware by simply de-capitalizing letters.