For the 2nd time in weeks, Microsoft packages laced with credential stealer

12 points by ashishb

DustyFuzzy

I'll admit that I giggled over one of the infected repos being microsoft/secure-azureai-agent, especially when the worm plants files to get AI agents to infect you.

quindarius

Has anyone seen any fallout from this?

ashishb

Microsoft has taken down a lot of repos to contain the damage.