Microsoft's Open Source Tools Hacked: Password-Stealing Malware Hits AI Developer Repos

✍️ OpenClawRadar📅 Published: June 9, 2026🔗 Source
Microsoft's Open Source Tools Hacked: Password-Stealing Malware Hits AI Developer Repos
Ad

Microsoft has pulled dozens of open source GitHub projects after hackers injected password-stealing malware, specifically targeting AI developers. At least 70 repos were disabled, many related to Azure, Claude Code, Gemini's CLI, and VS Code.

Attack Details

According to Cloudsmith and OpenSourceMalware, the malware steals stored credentials when users open compromised tools in AI coding apps. Affected repos include those for Microsoft's cloud services and AI development tooling. OpenSourceMalware identified this as a 're-compromise' of the Durable Task project, which was first breached in mid-May, suggesting the initial cleanup was incomplete or a distinct new attack occurred.

Microsoft's Response

Microsoft spokesperson Ben Hope stated: 'We have temporarily removed some repositories as we investigated potential malicious content. Some repos have been restored after review, while others may remain offline while work continues. As part of our investigation, we notified a small number of customers who may have pulled down content from the affected repositories.'

GitHub displays the message: 'Access to this repository has been disabled by GitHub Staff due to a violation of GitHub's terms of service.'

Ad

Implications for Developers

If you have pulled any Microsoft open source tools between mid-May and June 8, 2026, check your credentials stored in your AI development tools. Attackers could have accessed AI developer machines with privileged access to cloud systems and customer data. Consider rotating any passwords or tokens stored in those environments.

This incident is the latest in a series of supply chain attacks targeting popular open source projects. While rare for a large vendor like Microsoft, it underscores that no repository is immune.

📖 Read the full source: HN AI Agents

Ad

👀 See Also