All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

Microsoft open source packages compromised with credential-stealing malware targeting AI coding agents

By

Dan Goodin

4h ago· 2 min readenNews
Bagel score 75 of 100
75/100
Toasty
Bagelometer

Lightly toasted, lightly seasoned, mostly correct.

Score75TypenewsSentimentnegative

Summary

Dozens of cryptographically verified open source packages from Microsoft were compromised to include advanced credential-stealing code that activates when developers open them in AI coding agents. Multiple researchers identified 73 malicious packages on GitHub. Rather than flagging them as malicious and warning developers, GitHub (owned by Microsoft) simply disabled the packages, leaving users potentially compromised.

Key quotes

· 3 pulled
Dozens of cryptographically verified open source packages from Microsoft were compromised late last week to add advanced credential-stealing code that was triggered when developers opened them in AI coding agents.
In all, multiple researchers said, 73 packages were flagged as malicious when automated systems on GitHub blocked them on the platform.
Rather than noting they are malicious—and that developers who used AI agents to work with them should assume their systems are compromised—the Microsoft-owned GitHub said it disabled the packages
Snippet from the RSS feed
73 packages run self-replicating stealer as soon as they're opened by an AI agent.

You might also wanna read

Security Alert: Malicious Nx Packages Published to npm Containing Credential-Stealing Code

Malicious versions of the Nx package and several supporting plugins were published to npm, containing code that scans file systems, collects

github.com·9mo ago

GitHub Issue Prompt Injection Leads to 4,000 Developer Machines Compromised via Malicious npm Package

A sophisticated supply chain attack compromised approximately 4,000 developer machines through a GitHub issue title prompt injection. The at

grith.ai·3mo ago

Nx Build Kit Security Breach: Malware Steals Wallets and Credentials via GitHub Repositories

A security breach has been discovered in the popular Nx build kit where malicious post-install commands create unauthorized repositories nam

semgrep.dev·9mo ago

OpenCode AI Coding Agent Hit with Critical Remote Code Execution Vulnerability

OpenCode, a popular open-source AI coding agent, was recently hit with a critical CVE (Common Vulnerabilities and Exposures) that allowed fo

johncodes.com·4mo ago

Glassworm Threat Actor Returns with Unicode-Based Supply Chain Attacks on GitHub, npm, and VS Code

The Glassworm threat actor has returned with a new wave of supply chain attacks using invisible Unicode characters to compromise software re

aikido.dev·2mo ago

Growing Threat of Malicious Attacks via Open-Source Packages

Malicious attacks using open-source packages are a growing threat, with cybercriminals exploiting repositories like PyPI and npm. Despite in

securelist.com·10mo ago