A highly sophisticated phishing campaign has been uncovered, specifically targeting Node.js developers through an elaborate impersonation of the official npm package registry. This operation leverage…