Tech Times

npm Supply Chain Attack: North Korea Backdoored 144 AI Packages in 88 Minutes

Mastra AI’s 144 JavaScript packages was executed in just 88 minutes by North Korea’s Sapphire Sleet hacking group, which ...

How France’s education ministry built an open-source file-share platform for 400K users

As France seeks to reduce its dependence on non-European technology suppliers across the public sector, open-source software ...
The Hacker News

Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT

JFrog found malicious npm packages that deploy a Windows RAT to steal Chrome credentials, run commands, and transfer files.

In Test: Elixir's 1.20 New Intelligent Type System

Report do def user_age_to_string(user) do Integer.to_string(user.age) end end # An anderer Stelle im Projekt: Report.user_age_to_string(%{age: "42"}) Integer.to_string/1 is Elixir's usual notation for ...
SecurityWeek

North Korean Hackers Blamed for Mastra NPM Supply Chain Attack

A malicious dependency the attackers added to over 140 Mastra packages fetches a payload targeting cryptocurrency extensions. The North Korean state-sponsored threat actor Sapphire Sleet is behind the ...