Over 140 popular Mastra npm Packages Hit by Supply Chain Attack
141 Mastra npm packages were compromised in a supply chain attack that injected a malicious dependency to silently download and execute a payload at install time. Category: Vulnerabilities & Threats
Read the full articleYou might also wanna read
Mastra supply chain attack: The importance of scope access and account hygiene
AI development framework Mastra was hit in a supply chain attack causing more than 140 packages to execute a two-stage infostealer affecting
The Mastra supply chain attack wasn't about AI
141 compromised packages, a malicious dependency, and a contributor account takeover. Here's what the Mastra supply chain attack reveals abo
Microsoft attributes Mastra AI supply chain attack affecting 140+ npm packages to North Korean hackers
Microsoft says the Mastra AI supply chain attack that hit more than 140 npm packages was carried out by Sapphire Sleet, also known as BlueNo
hendryadrian.com·20d agoNPM supply chain attack compromises popular packages, posing widespread security risk
That NPM attack could have been so much worse.
Mass Supply Chain Attack Hits TanStack, Mistral AI npm and PyPI Packages
Over 400 compromised npm package versions and at least 2 PyPI packages published in a coordinated supply chain attack targeting TanStack, Mi
npm Supply Chain Attack: Multiple Popular Packages Hijacked (1B+ Weekly Downloads)
Complete analysis of sophisticated crypto wallet drainer found in 21 npm packages with over one billion weekly downloads. Includes detailed

Comments
Sign in to join the conversation.
No comments yet. Be the first.