Mastra npm namespace backdoored via easy-day-js (dormant contributor account)
campaign · campaign:mastra-easy-day-js-supply-chain
Coverage timeline
1
first 2026-06-18 → last 2026-06-18
Briefs
1
1 distinct
Sources cited
4
3 hosts
Sections touched
1
deep_dive
Co-occurring entities
0
no co-occurrence
Story timeline
- 2026-06-18CTI Daily Brief — 2026-06-18
Where this entity is cited
- deep_dive1
Source distribution
- attack.mitre.org2 (50%)
- research.jfrog.com1 (25%)
- socket.dev1 (25%)
All cited sources (4)
- research.jfrog.comprimaryinlineJFrog, 2026-06-17https://research.jfrog.com/post/easy-day-js/
- attack.mitre.orginlineCompromise Software Dependencies and Development Toolshttps://attack.mitre.org/techniques/T1195/001/
- attack.mitre.orginlineCompromise Software Supply Chainhttps://attack.mitre.org/techniques/T1195/002/
- socket.devinlineSocket, 2026-06-17https://socket.dev/blog/mastra-npm-packages-compromised
Items in briefs about Mastra npm namespace backdoored via easy-day-js (dormant contributor account)
No parsed item heading or body matches this entity yet. Items match by exact CVE id (for CVE entities), by lead-segment substring of the title in the item heading or body, or by a distinctive anchor token from the title appearing in the item heading. Coverage that lives inside a broader section (no per-item heading) is captured by the Story timeline above.