A months-long typosquatting campaign In early October, researchers from a software supply chain security firm called Phylum discovered six malicious packages on NuGet Gallery that were uploaded by ...