> TritonInfoSec News
Home / Jun 23, 2026 / Story
0
#8 SecurityWeek general June 22, 2026 at 11:10 UTC

North Korean Hackers Blamed for Mastra NPM Supply Chain Attack

By Ionut Arghire

AI Summary

North Korean threat actors have been attributed to a supply chain attack on the Mastra framework's NPM ecosystem, injecting a malicious dependency into over 140 Mastra packages that fetches a payload specifically targeting cryptocurrency browser extensions. The campaign continues the pattern of DPRK-linked groups using open-source package ecosystems to compromise developer environments and steal cryptocurrency assets. Developers using Mastra packages should audit their dependency trees and check for the malicious dependency introduced by the attackers.

Read full article → https://www.securityweek.com/north-korean-hackers-…

Relevance score: 77.0/100

# More from June 23

  1. 1
    FortiBleed campaign used custom FortiGate sniffer to steal credentials BleepingComputer
  2. 2
    New Exploit Bypasses Apple’s Boot Defenses, Affects Millions of iPhones SecurityWeek
  3. 3
    Fortinet Responds to FortiBleed Campaign SecurityWeek
  4. 4
    Canada’s Spy Agency Used First-of-Its-Kind Warrant to Clean Botnet-Infected Devices The Hacker News
  5. 5
    ShapedPlugin WordPress Pro Plugins Backdoored in Supply Chain Attack The Hacker News
  6. 6
    29-Year-Old Squid Proxy Bug 'Squidbleed' Can Leak Cleartext HTTP Requests The Hacker News
  7. 7
    AryStinger Malware Infects 4,300 Legacy Routers to Build Reconnaissance Proxy Network The Hacker News
  8. 9
    Researchers Detail DifyTap Flaws in Dify That Could Expose AI Chats Across Tenants The Hacker News
  9. 10
    More Cybersecurity Firms Disclose Impact From Klue Hack SecurityWeek