North Korean threat actor Sapphire Sleet has been linked to a supply chain attack targeting Mastra, according to Microsoft ...

Microsoft says North Korean-linked BlueNoroff compromised a Mastra npm maintainer account and published more than 140 ...

Microsoft links the recent Mastra AI npm supply chain attack to , a North Korean group known for cryptocurrency theft ...

Mastra AI’s 144 JavaScript packages was executed in just 88 minutes by North Korea’s Sapphire Sleet hacking group, which ...

Starting on June 11, 2026, the Arch User Repository (AUR) was targeted by malware which rapidly compromised over 1,500 packages. The AUR repository allows for abandoned community packages to be taken ...

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...

The tool has already blocked more than 52,000 risky npm packages as supply chain attacks continue to hit software teams.

Python developer Roman Imankulov nearly took the bait. The fact that he didn't can be chalked up to human intuition and AI ...

The popular Mastra AI framework, used to build artificial intelligence agents, workflows and retrieval-augmented generation ...

ENVIRONMENT: A growing South African ICT solutions business, specialising in technology services for the Retail and Healthcare sectors, is seeking a Senior Backend Software Developer to join its ...

ENVIRONMENT: A growing South African ICT solutions business, specialising in technology services for the Retail and Healthcare sectors, is seeking a Senior Backend Software Developer to join its ...

Mastra npm packages added easy-day-js malware, exposing developer systems and CI runners to infostealer risks.