For the 2nd time in weeks, Microsoft packages laced with credential stealer
Dozens of cryptographically verified open source packages from Microsoft were compromised late last week to add advanced credential-stealing code that was triggered when developers opened them in AI coding agents. In all, multiple researchers said , 73 packages were flagged as malicious when automated systems on GitHub blocked them on the platform. Rather than noting they are malicious—and that developers who used AI agents to work with them should assume their systems are co
Microsoft has recently identified a security breach involving 73 open-source packages that were manipulated to include sophisticated credential-stealing malware. These malicious components were specifically designed to execute when accessed through AI-powered coding assistants. While GitHub initially removed the affected repositories citing terms of service violations, the platform failed to explicitly warn users about the potential security risks. Microsoft has since confirmed it is investigating the incident and has temporarily pulled the compromised files from circulation. Security experts are now advising developers who utilized these packages to treat their local environments as compromised and take immediate remedial action.
This incident highlights a growing supply chain security threat where attackers exploit the integration of AI coding agents to distribute malware through trusted, verified software repositories.
📌 Kaynak
Bu özet Ars Technica kaynağından otomatik derlenmiştir. Tamamı için orijinal habere gidin.
Orijinal haberi oku →