Vivold Consulting

Microsoft pulls 70+ GitHub repos after a supply-chain hack targeting AI developers' credentials

Key Insights

Microsoft disabled dozens of its open-source GitHub projects - at least 70 - after hackers reportedly injected password-stealing malware into the code. Many affected projects relate to Azure and tools used with AI coding apps like Claude Code, the Gemini CLI, and VS Code, with credentials stolen when developers opened the compromised tools. It's reportedly Microsoft's second such breach in weeks, described as a re-compromise of a previously hit project.

Stay Updated

Get the latest insights delivered to your inbox

A supply-chain attack aimed squarely at AI developers

Microsoft cut off access to dozens of its open-source GitHub projects after hackers apparently breached them and slipped in credential-stealing malware. At least 70 Microsoft projects were disabled, many tied to its Azure cloud service and to tooling developers use with AI coding apps.

How the attack worked

The mechanics are a textbook supply-chain compromise, the kind that's been hitting popular open-source code in recent months:

- The tainted projects included tools commonly used alongside AI coding apps such as Claude Code, Gemini's command-line interface, and VS Code.
- According to security firm Cloudsmith and the malware-analysis site OpenSourceMalware - among the first to flag it - the malware stole users' passwords and other credentials when the compromised tools were opened in those AI coding environments.
- It's not yet known how many people downloaded the affected tools, and the disabled repos now show GitHub's standard terms-of-service takedown notice.

Why this one stands out

Supply-chain attacks are advantageous to attackers precisely because the targeted code is reused across many products or by a specific kind of user - often people with access to cloud systems and large troves of customer data. What makes this case notable is the target: it's relatively rare for a giant like Microsoft, with deep defensive resources, to get breached this way, versus the solo open-source maintainers usually hit. More worrying, it's reportedly Microsoft's second open-source compromise in weeks - described as a re-compromise of its Durable Task project, which suggests either the attackers weren't fully evicted the first time or this is a fresh, distinct breach.

The takeaway for developers

The episode is a pointed reminder that the AI coding boom has widened the attack surface: the more developers wire third-party tools into Claude Code, Gemini, and VS Code workflows, the more those dependencies become a high-value target. The advice that follows from incidents like this is the unglamorous basics - scrutinize what you pull into your toolchain, rotate exposed credentials, and treat even big-vendor open-source code as something that can be compromised.

Related Articles

L'Oreal's OpenAI deal puts Maybelline try-on, product discovery, and ChatGPT ads in play

L'Oreal has announced a wide-ranging collaboration with OpenAI, unveiled at VivaTech 2026, that brings Maybelline's virtual makeup try-on directly into ChatGPT via L'Oreal's ModiFace AR technology. The deal spans consumer shopping tools, product discovery for brands like Lancome and Kerastase, advertising pilots (SkinCeuticals, CeraVe, Garnier), and R&D - including using OpenAI's GPT-Rosalind life-sciences model for skin-microbiome research. It lands as OpenAI reports ChatGPT at more than 900 million weekly users.

Sakana's Fugu delivers multi-agent frontier performance through one API - and pitches it as an export-control hedge

Sakana AI has launched Fugu and Fugu Ultra, a multi-agent orchestration system delivered as a single foundation model - Fugu is itself an LLM trained to route tasks across a swappable pool of the world's best models (and recursively to itself) via one OpenAI-compatible API. Sakana says Fugu Ultra matches frontier models like Anthropic's Fable 5 and Mythos Preview on demanding engineering, science, and reasoning benchmarks, while pitching the approach as an AI-sovereignty hedge: if one provider's access disappears, as with Anthropic's recently export-controlled models, Fugu reroutes around it. It is generally available today through subscription and pay-as-you-go tiers.

HSBC's multi-year Google Cloud deal targets 200+ AI use cases, some worth $100M+ each

HSBC has signed a multi-year partnership with Google Cloud to build and deploy AI across wealth management, financial-crime risk, and internal decision support, using Gemini models and the Gemini Enterprise Agent Platform. The bank expects more than 200 AI use cases over two years, with selected ones each potentially returning over US$100 million. It builds on a deep existing base - 600-plus AI use cases and a Google-built financial-crime system screening 1.2 billion transactions a month.