> TritonInfoSec News
Home / Jun 21, 2026 / Story
0
#5 BleepingComputer general June 20, 2026 at 14:09 UTC

Microsoft links Mastra AI supply chain attack to North Korean hackers

By Lawrence Abrams

AI Summary

Microsoft attributed a supply chain attack on the Mastra AI framework to North Korean threat actor Sapphire Sleet (BlueNoroff), which compromised more than 140 npm packages. This campaign demonstrates North Korea's expanding focus on AI development toolchains as a vector for software supply chain compromise.

Read full article → https://www.bleepingcomputer.com/news/security/mic…

Relevance score: 83.0/100

# More from June 21

  1. 1
    CISA warns Fortinet users to secure devices after FortiBleed leak BleepingComputer
  2. 2
    FortiBleed: 86,000 Fortinet Device Credentials Compromised SecurityWeek
  3. 3
    15,000 WordPress Websites Cleaned Up in SocGholish Botnet Takedown SecurityWeek
  4. 4
    Police raid malware network tied to Russia's Evil Corp hacker group The Record
  5. 6
    Cybersecurity Firms Impacted by Klue Supply Chain Attack SecurityWeek
  6. 7
    Klue OAuth breach victim list grows as Icarus hackers claim attack BleepingComputer
  7. 8
    AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code Execution The Hacker News
  8. 9
    Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys The Hacker News
  9. 10
    Apple Patches Beats Studio Buds Flaw Letting Nearby Attackers Spy via Microphone The Hacker News