I was getting bombarded with email newsletters I didn’t need, so I asked Claude for help. It was done in minutes.
The campaign spans npm, Packagist, Go, and Chrome, using obfuscated JavaScript loaders and VS Code tasks to deliver malware.