A sophisticated supply chain attack has targeted the Mastra-AI npm ecosystem, with researchers from Microsoft and Socket identifying over 141 compromised packages designed to silently deploy an infostealer payload on developer machines, CI/CD runners, and build environments. The campaign, detected...

#Malware #Windows

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

Hackers Compromised 140+ Mastra npm Packages to Deploy Password-Stealing Malware

VERWANDTEARTIKEL

Microsoft Teams Relay Servers Abused in DragonForce Ransomware Attack

Malwarebytes earns AV-TEST Top Product award, aces other third-party tests

Malicious JetBrains Plugins Steal AI API Keys as Chrome Extensions Capture Chatbot Chats

Microsoft working on Defender patch for RoguePlanet zero-day

China-Linked FishMonger Ports SprySOCKS to Windows With Kernel-Level Stealth and UEFI Bootkit Hints

Hackers Use Rokarolla Android Malware to Disable Google Play Protect and Control Devices