Cybersecurity

144 Mastra npm Packages Compromised via Hijacked Contributor Account

Jun 17, 2026 - 13:17
0 0
144 Mastra npm Packages Compromised via Hijacked Contributor Account
As many as 144 npm packages associated with the Mastra namespace ("@mastra/*"), a popular open-source JavaScript and TypeScript framework for building artificial intelligence (AI) applications, have been compromised as part of a software supply chain attack codenamed easy-day-js, per findings from JFrog, SafeDep, Socket, and StepSecurity. "A single npm account (ehindero) mass-published more

Read More
Previous Article

Microsoft working on Defender patch for RoguePlanet zero-day

Next Article

Malicious JetBrains Plugins Steal AI API Keys as Chrome Extensions Capture Ch...

What's Your Reaction?

Like Like 0
Dislike Dislike 0
Love Love 0
Funny Funny 0
Wow Wow 0
Sad Sad 0
Angry Angry 0

Related Posts

UK Social Media Ban for Minors Has Privacy Experts Worried

UK Social Media Ban for Minors Has Privacy Experts W...

Jun 17, 2026
0
0
Get Out of Security Debt by Tackling the Exposure Problem

Get Out of Security Debt by Tackling the Exposure Pr...

Jun 18, 2026
0
0
Adversarial Exposure Validation Turns Security Visibility into Confident Prioritization

Adversarial Exposure Validation Turns Security Visib...

Jun 17, 2026
0
0
Google to use UK and EU user IP addresses for ad personalization

Google to use UK and EU user IP addresses for ad per...

Jun 18, 2026
0
0
The Top 10 Attack Surface Exposures in 2026

The Top 10 Attack Surface Exposures in 2026

Jun 17, 2026
0
0
Fileless Phantom Stealer Targets Browser Credentials

Fileless Phantom Stealer Targets Browser Credentials

Jun 17, 2026
0
0

Comments (0)

User