Microsoft links Mastra AI supply chain attack to North Korean hackers

Microsoft has attributed the Mastra AI supply chain attack, which compromised over 140 npm packages, to the North Korean threat actor Sapphire Sleet. The hackers hijacked a maintainer account to deploy malware designed to steal cryptocurrency and sensitive developer credentials.