NPM Bug Allowed Attackers to Distribute Malware as Legitimate Packages

A "logical flaw" has been disclosed in the NPM package manager that allowed attackers to pass off rogue libraries as legitimate.