[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fGBmicRs4XlWRGK2PMG1EPp1_KW1txBWe9-WthqEggho":3},{"article":4,"iocs":52},{"id":5,"title":6,"slug":7,"summary":8,"ai_summary":9,"brief":10,"full_text":11,"url":12,"image_url":13,"published_at":14,"ingested_at":15,"relevance_score":16,"entities":17,"category_id":29,"category":30,"article_tags":34},"0ea7d67b-3f2f-4627-83e8-7b045598bfa8","140+ Mastra npm Packages Compromised in Coordinated Supply Chain Attack","140-mastra-npm-packages-compromised-in-coordinated-supply-chain-attack-839372","Socket has detected a malicious npm supply chain campaign involving compromised @mastra\u002F* packages published under the Mastra namespace. A single npm account (ehindero) mass-published more than 140 malicious packages across the Mastra scope within a short window on 2026-06-17. The compromised package versions themselves contain unmodified code; the attack is delivered through an injected dependency, a typosquatted package named easy-day-js added to each package's dependency list. easy-day-js carries an obfuscated payload in a postinstall install hook, meaning the malware runs automatically during npm install (before a developer imports or uses the package) and rides into any project that pulls in one of the compromised Mastra packages. The loader disables TLS certificate validation, fetches a second-stage payload from attacker-controlled infrastructure over TLS, executes it as a detached background process, and deletes itself to limit forensic traces. Socket recovered and analyzed that second stage: a cross-platform infostealer that steals browser history and the stored data of over 160 cryptocurrency wallet browser extensions, and installs persistence across Windows, macOS, and Linux before exfiltrating to the operators' C2 servers. The affected packages include @mastra\u002Fcore, which receives more than 918K weekly npm downloads, giving this campaign a large potential blast radius. Because the payload executes during installation, systems may be exposed before developers import or use the package. Socket is still analyzing exact impact, but any workstation, CI runner, or build environment that installed the affected versions should be treated as potentially compromised. Socket's threat research team is continuing to analyze the malware and its potential impact, and will publish full technical details as the investigation progresses. We are also tracking affected packages, versions, and detection details on our public campaign page. Socket flagged the malicious easy-day-js within six minutes after publication. The package had been uploaded to npm as a clean dependency the day before, then updated later to deliver malware, a pattern reminiscent of the recent axios campaign. Because the affected Mastra packages pulled in that dependency, Socket users were protected automatically, with installs of any of the compromised packages flagged and blocked. Unknown block type \"supplyChainAttackPackages\", specify a component for it in the `components.types` option Recommendations If you installed any of the versions above, treat the host or CI runner that ran the install as compromised. Remove the affected versions, delete node_modules, and reinstall a known-good prior version. Rotate any credentials that may have been exposed during installation, including npm tokens, cloud provider keys, CI\u002FCD secrets, and SSH and Git credentials. Socket customers are protected automatically: installs of these packages are flagged and blocked before the malicious install hook can execute.","A coordinated supply chain attack has compromised over 140 npm packages within the @mastra\u002F* namespace. The attack was delivered through a typosquatted dependency, easy-day-js, which was injected into the Mastra packages' dependency lists. This malicious dependency contains an obfuscated payload that executes during 'npm install', disabling TLS validation and fetching a second-stage infostealer targeting cryptocurrency wallets and browser data across multiple operating systems.","140+ Mastra npm packages compromised via malicious dependency easy-day-js.","Research\u002FSecurity Newsnpm Package Uses Prompt Injection and Token Flooding to Disrupt AI Malware ScannersA new npm package tests AI malware scanners with prompt injection, safety-triggering comments, context flooding, and obfuscated JavaScript.By Jean-Charles Noirot Ferrand - Jun 16, 2026","https:\u002F\u002Fsocket.dev\u002Fblog\u002Fmastra-npm-packages-compromised?utm_medium=feed","https:\u002F\u002Fcdn.sanity.io\u002Fimages\u002Fcgdhsj6q\u002Fproduction\u002F82e90e11718b1f8d76aab795e7c140aa7d5a6b0c-1920x1180.png?w=1000&q=95&fit=max&auto=format","2026-06-17T06:03:40.218+00:00","2026-06-17T08:00:15.086544+00:00",9,[18,21,23,26],{"name":19,"type":20},"@mastra\u002F*","product",{"name":22,"type":20},"easy-day-js",{"name":24,"type":25},"Socket","vendor",{"name":27,"type":28},"npm","technology","26b0b636-0e31-4db1-bffb-61bdf9f20a58",{"id":29,"icon":31,"name":32,"slug":33},null,"Supply Chain","supply-chain",[35,37,42,47],{"category":36},{"id":29,"icon":31,"name":32,"slug":33},{"category":38},{"id":39,"icon":31,"name":40,"slug":41},"89f78b1c-3503-45a1-9fc7-e23d2ce1c6d5","Malware","malware",{"category":43},{"id":44,"icon":31,"name":45,"slug":46},"ade75414-7914-4e23-a450-48b64546ee70","Open Source","open-source",{"category":48},{"id":49,"icon":31,"name":50,"slug":51},"e7b231c8-5f79-4465-8d38-1ef13aea5a14","Threat Intelligence","threat-intelligence",[53],{"type":41,"value":54,"context":55},"infostealer","Second-stage payload that steals cryptocurrency wallet data and browser history."]