Microsoft disclosed that its open-source tools were breached in a supply-chain attack that injected malicious code into popular repositories. The malware targeted AI developers by exfiltrating passwords and API keys from development environments. The incident underscores the vulnerability of open-source ecosystems in AI development, where many rely on shared code. Microsoft has since revoked compromised credentials and released patches, advising users to rotate keys and audit dependencies.
SecurityPublished: June 14, 2026
Microsoft Open-Source Tools Hacked to Steal AI Developer Credentials
Reported by AIVerse News Desk
Executive Summary
"Attackers compromised Microsoft's open-source repositories to deploy password-stealing malware targeting AI developers."
External CoverageRead original source reporting open_in_new