Microsoft blames North Korea's Sapphire Sleet for Mastra npm compromise

Microsoft attributes the Mastra npm supply chain compromise to Sapphire Sleet, a North Korean actor that primarily targets the financial sector. Microsoft has observed use of known Sapphire Sleet infrastructure, malware, and tactics following compromise via the malicious packages. https://msft.it/6044vmpYy Sapphire Sleet was also responsible for a separate npm compromise affecting Axios in April 2026. https://msft.it/6045vmpYJ

To view or add a comment, sign in

Explore content categories