Microsoft’s open source tools were hacked to steal passwords of AI developers
Microsoft shut down over 40 GitHub repositories containing open-source code for its Azure cloud platform and AI development tools this week following a security breach. The attackers reportedly exploited vulnerabilities in these repositories to steal credentials, including passwords, from developers working on AI projects. The compromised repositories included code related to Azure Machine Learning, Azure AI Search, and other AI-focused services. Microsoft stated that the incident did not impact Azure services themselves, but rather the code repositories hosted on GitHub. The company has initiated an investigation into the breach and is working to secure the affected repositories and notify impacted users. This incident highlights the security risks associated with open-source code repositories, even for major cloud providers, and underscores the importance of robust security measures for developer tools and credentials.
Original source — read the full reporting at the publisher:
Read on TechCrunch