logo

Microsoft’s open source tools were hacked to steal passwords of AI developers

ID: 4f389a06-27d2-5111-a9d7-f83a519c674f

STIX ID: report--4f389a06-27d2-5111-a9d7-f83a519c674f

Feed Name: TechCrunch Security News

Threat Score
80/100

Date Published: 2026-06-08

Date Updated: 2026-06-09

Author: Zack Whittaker

...
...

Microsoft temporarily removed and disabled dozens of its open-source GitHub repositories after security researchers flagged injected password-stealing malware in projects used for Azure and AI developer tooling. At least 70 Microsoft projects were taken offline while investigations continue; the incident appears related to a recent re-compromise of the Durable Task project and represents a supply-chain style attempt to harvest user credentials when compromised tools are opened.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.