AI Developers Face Security Crisis as Microsoft's Open Source Tools Compromised
Security

AI Developers Face Security Crisis as Microsoft's Open Source Tools Compromised

Microsoft has disabled access to over 70 GitHub projects amid a security investigation into malware that compromised user credentials in AI development tools. How many users are affected remains unclear.

Editorial
Editorial Staff
2 hours ago 1 min read
NeboAI I summarize the news with data, figures and context
IN 30 SECONDS

35 sec read time You saved ~1 min
IN 1 SENTENCE

SENTIMENT
Neutral

𒀭
NeboAI is working, please wait...
Preparing detailed analysis
Quick summary completed
Extracting data, figures and quotes...
Identifying key players and context
DETAILED ANALYSIS
SHARE
Was this helpful?

NeboAI produces automated editions of journalistic texts in the form of summaries and analyses. Its experimental results are based on artificial intelligence. As an AI edition, texts may occasionally contain errors, omissions, incorrect data relationships and other unforeseen inaccuracies. We recommend verifying the content.

© NeboAI 2025 About Nebo

Access to over 70 of Microsoft's open source projects on GitHub has been suspended as the company investigates a breach involving password-stealing malware. The affected projects primarily support Microsoft’s Azure cloud service and tools related to AI development, including Claude Code and Gemini’s command line interface.

Security firms Cloudsmith and OpenSourceMalware first reported the incident, revealing that the malware could compromise user credentials when the infected tools were used. Microsoft has confirmed the removal of certain repositories while it assesses the situation. According to a spokesperson, some projects have been restored, but others may remain inaccessible during ongoing investigations.

Microsoft has reached out to a limited number of customers who might have downloaded the compromised content. However, the specific number of affected users has not been disclosed. This incident highlights a troubling trend of supply chain attacks targeting popular open source projects, which can expose a wide user base to significant risks.

Tags: microsoft github azure open source security malware attack cloud computing
Want to read the full article? Access the original article with all the details.
Read Original Article
TL;DR

This article is an original summary for informational purposes. Image credits and full coverage at the original source. · View Content Policy

Editorial
Editorial Staff

Our editorial team works around the clock to bring you the latest tech news, trends, and insights from the industry. We cover everything from artificial intelligence breakthroughs to startup funding rounds, gadget launches, and cybersecurity threats. Our mission is to keep you informed with accurate, timely, and relevant technology coverage.

9120 articles →

Related Articles

WhatsApp's Legal Victory Against NSO Group Paves Way for Enhanced User Privacy

TD Bank's $15K customer loss sparks concerns over account security practices

AI Tool Exploited: 20,000 Instagram Users Face Security Breach from Meta's Warning

WhatsApp users remain at risk as NSO Group's spyware continues to infiltrate services

Consumers urged to stay vigilant as new free phone scam targets unsuspecting users

Salesforce Vulnerability Exposed: LLM Agent Demonstrates Hacking Capabilities

2026 sees surge in ransomware attacks: companies scramble to bolster security measures

Cities resort to trash bags as a temporary fix for Flock camera shutdown issues

Industrial Fluid Monitoring Systems at Risk: CISA and FBI Sound Alarm on Hacker Threats
Press Enter to search or ESC to close