This mainly affects apps built on JavaScript frameworks running on devices that actively connect to the internet. Don’t know how the malware works but I’d just be careful in case any of my other React Native,Electron.. apps might have received updates recently.
Apps that are built on JavaScript libraries, in short NPM is the playstore for these developers who can use any library from the store by just writing commands, there are millions of open source libraries in that play store, so one developer
qix with many open source libraries clicked on a phishing link while masturbating watching porn maybe, he clicked it and hackers got in and installed their love letters.
They also got into duckdb packages, anyway, this all starts from a fuching link that the developer clicked. It does not basically going to affect the app used by any of those languages i.e React, electron, but the apps that use packages from npm. Chill the issue has been solved now.