Microsoft has attributed a supply chain attack on Mastra AI that compromised over 140 npm packages to North Korean hackers from the Sapphire Sleet group, marking a significant escalation in state-sponsored threats targeting open-source software repositori
Read the full article: https://www.bleepingcomputer.com/news/security/microsoft-links-mastra-ai-supply-chain-attack-to-north-korean-hackers/