A phishing attack compromised a major Node.js developer, leading to the insertion of malicious code into widely used packages. Security teams face significant costs to update systems, despite the ...