Microsoft links Mastra AI supply chain attack to North Korean hackers
Microsoft has attributed a supply chain attack on the Mastra AI npm package ecosystem to the North Korean state-sponsored group Sapphire Sleet (BlueNoroff). The attackers compromised an npm maintainer account to publish malicious updates to over 140 packages, injecting a typosquatted dependency 'easy-day-js' that deployed malware on developers' systems. This malware steals sensitive credentials, API keys, authentication tokens, and cryptocurrency wallets across Windows, Linux, and macOS platforms. The attack includes disabling TLS verification, contacting attacker-controlled servers, and deploying a second-stage payload with persistence mechanisms. The threat actor is known for targeting the financial sector and cryptocurrency assets. No specific affected software versions or patches are detailed in the available information.
AI Analysis
Technical Summary
A recent supply chain attack on the Mastra AI npm packages was attributed by Microsoft to the North Korean hacking group Sapphire Sleet (BlueNoroff). The attackers hijacked the npm maintainer account 'ehindero' to publish malicious updates to more than 140 packages within the @mastra scope. These updates introduced a malicious dependency named 'easy-day-js', a typosquat of the legitimate 'dayjs' library. Upon installation, this dependency executed a post-install hook that deployed an obfuscated malware dropper, disabled TLS certificate verification, and communicated with attacker-controlled command-and-control infrastructure. The second-stage payload was a cross-platform information stealer targeting Windows, Linux, and macOS, designed to collect host information, browser histories, installed applications, running processes, and detect 166 cryptocurrency wallet browser extensions. The malware used OS-specific persistence methods and was followed by additional malicious activity consistent with Sapphire Sleet's known tactics, including deployment of a PowerShell backdoor and privilege escalation. This attack aligns with Sapphire Sleet's history of cryptocurrency theft and supply chain compromises. No patch or remediation details are provided in the source.
Potential Impact
The attack compromised the integrity of over 140 npm packages in the Mastra AI ecosystem, potentially affecting developers who installed these packages. The malicious dependency deployed malware capable of stealing sensitive credentials, API keys, authentication tokens, and cryptocurrency wallet information across multiple operating systems. This could lead to credential theft, unauthorized access to developer environments, and theft of cryptocurrency assets. The malware also disables TLS verification, increasing the risk of man-in-the-middle attacks during communication with command-and-control servers. The persistence mechanisms and follow-on activity indicate a sustained threat presence on infected systems.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Organizations and developers using Mastra AI npm packages should verify the integrity of their dependencies and consider removing or replacing affected packages until official guidance or patches are available. Monitoring for unusual post-install behavior and network communications to suspicious domains may help detect compromise. Follow updates from Microsoft and npm regarding remediation steps and security advisories related to this incident.
Microsoft links Mastra AI supply chain attack to North Korean hackers
Description
Microsoft has attributed a supply chain attack on the Mastra AI npm package ecosystem to the North Korean state-sponsored group Sapphire Sleet (BlueNoroff). The attackers compromised an npm maintainer account to publish malicious updates to over 140 packages, injecting a typosquatted dependency 'easy-day-js' that deployed malware on developers' systems. This malware steals sensitive credentials, API keys, authentication tokens, and cryptocurrency wallets across Windows, Linux, and macOS platforms. The attack includes disabling TLS verification, contacting attacker-controlled servers, and deploying a second-stage payload with persistence mechanisms. The threat actor is known for targeting the financial sector and cryptocurrency assets. No specific affected software versions or patches are detailed in the available information.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
A recent supply chain attack on the Mastra AI npm packages was attributed by Microsoft to the North Korean hacking group Sapphire Sleet (BlueNoroff). The attackers hijacked the npm maintainer account 'ehindero' to publish malicious updates to more than 140 packages within the @mastra scope. These updates introduced a malicious dependency named 'easy-day-js', a typosquat of the legitimate 'dayjs' library. Upon installation, this dependency executed a post-install hook that deployed an obfuscated malware dropper, disabled TLS certificate verification, and communicated with attacker-controlled command-and-control infrastructure. The second-stage payload was a cross-platform information stealer targeting Windows, Linux, and macOS, designed to collect host information, browser histories, installed applications, running processes, and detect 166 cryptocurrency wallet browser extensions. The malware used OS-specific persistence methods and was followed by additional malicious activity consistent with Sapphire Sleet's known tactics, including deployment of a PowerShell backdoor and privilege escalation. This attack aligns with Sapphire Sleet's history of cryptocurrency theft and supply chain compromises. No patch or remediation details are provided in the source.
Potential Impact
The attack compromised the integrity of over 140 npm packages in the Mastra AI ecosystem, potentially affecting developers who installed these packages. The malicious dependency deployed malware capable of stealing sensitive credentials, API keys, authentication tokens, and cryptocurrency wallet information across multiple operating systems. This could lead to credential theft, unauthorized access to developer environments, and theft of cryptocurrency assets. The malware also disables TLS verification, increasing the risk of man-in-the-middle attacks during communication with command-and-control servers. The persistence mechanisms and follow-on activity indicate a sustained threat presence on infected systems.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Organizations and developers using Mastra AI npm packages should verify the integrity of their dependencies and consider removing or replacing affected packages until official guidance or patches are available. Monitoring for unusual post-install behavior and network communications to suspicious domains may help detect compromise. Follow updates from Microsoft and npm regarding remediation steps and security advisories related to this incident.
Technical Details
- Article Source
- {"url":"https://www.bleepingcomputer.com/news/security/microsoft-links-mastra-ai-supply-chain-attack-to-north-korean-hackers/","fetched":true,"fetchedAt":"2026-06-20T14:18:27.858Z","wordCount":766}
Threat ID: 6a36a13394ccad597e750c88
Added to database: 6/20/2026, 2:18:27 PM
Last enriched: 6/20/2026, 2:18:41 PM
Last updated: 6/20/2026, 2:56:59 PM
Views: 5
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.