Microsoft's open source tools were hacked to steal passwords of AI developers

Posted by raffael_de 12 hours ago

Microsoft's open source tools were hacked to steal passwords of AI developers(techcrunch.com)

459 points | 162 commentspage 2

zihotki 11 hours ago|

And the best recommendation security teams can give - keep your SBOM strict, use min release age policy (sounds more like band-aid). That's a scary world to live in.

wolfi1 10 hours ago||

a friend of mine has a very different solution: he codes everything by hand. he says that the time you need to research to include a new package you can actually use to code the piece you need. and he for sure doesn't have the problems of transitive dependencies

supernes 9 hours ago|||

That's been happening to me more often too recently. I find that, for a growing number of simple problems, reinventing the wheel is faster and more efficient than importing a mature, fully-featured dependency.

nicce 10 hours ago||||

Depending of the scenario, it can be very fine. E.g. if you just need one or two function call from the dependency. However, for some complex binary protocols it might be better to stick with libraries.

dgellow 10 hours ago||||

I assume that means he genAIs all his deps? Rather than writing by hand

wolfi1 5 hours ago||

he does not use them

hsbauauvhabzb 10 hours ago|||

But now he needs to develop, test and maintain that code. Left pad is easily hand coded, react framework not so much.

wolfi1 9 hours ago||

his projects were GUIs for machines (HMI)

rcxdude 3 hours ago|||

Embedded software already has a pretty strong culture of rarely using libraries and vendoring them if they do (for better and for worse). This kind of worm just doesn't really make sense in that kind of environment anyway.

hsbauauvhabzb 5 hours ago|||

That’s not really my point. My point is some libraries are easily replaced and others are massive, complex and need ongoing support.

By the same logic, he could avoid system dependencies by writing his own OS. But it obviously doesn’t scale.

I’m all for an anti-library ethos, as long as the pros and cons are carefully considered and wheels are only reinvented when the cost/risk ratio is right.

nicce 10 hours ago||

> keep your SBOM strict

Based on the news, seems like it is better to not include Microsoft at all in there.

minraws 11 hours ago||

Remember folks Microsoft has Mythos access

xeyownt 1 hour ago||

No, it's Mythos that has access to Microsoft now :-)

abc3354 10 hours ago||

"No way to prevent this" say users of only package manager where this... Oh no sorry I thought this was Javascript Haters weekly meetup

raincole 10 hours ago||

> steal passwords of AI developers

What does this even mean?

The malware specifically steals passwords from developers who use AI? From those who develop AI tool? Or it steals API tokens, which serve a similar function as passwords do for humans?

Is this what journalism looks like today? Just slap the two holy letters on the title and you get views?

(Yes, I read the article. No, I still don't think the title makes sense. You can skip this techchurch slop and read the real information here: https://opensourcemalware.com/blog/miasma-reaches-azure)

Ukv 10 hours ago||

https://www.stepsecurity.io/blog/miasma-worm-hits-microsoft-... mentions that it plants `.claude/settings.json`, `.gemini/settings.json`, `.cursor/rules/setup.mdc`, and `.vscode/tasks.json` to execute its payload as a setup task.

VSCode will be used by plenty of non-AI-using developers, and the credential harvester is not specific to AI API tokens, but that 3/4 of the targets are AI coding tools is I assume where the claim comes from.

trumpdong 9 hours ago|||

> you can skip the slop and read the real information here: (link that is obviously written by AI)

raincole 7 hours ago||

And?

If the techchurch post is written by a human then I'll take this as an example that humans outslop AI.

sourcecodeplz 10 hours ago||

Do I remember correctly when techcrunch was charging $10k per month for a square banner on its website, 2005? And that was considered the top, for a tech blog. Even then they posted slop.

axus 11 hours ago||

Their source has the list of the 73 disabled repositories: https://opensourcemalware.com/blog/miasma-reaches-azure

antiloper 11 hours ago|

AI;DR:

Azure (49)

azure-functions-agents-runtime azure-functions-connector-extension azure-functions-core-tools azure-functions-docker azure-functions-dotnet-extensions azure-functions-dotnet-worker azure-functions-durable-extension azure-functions-durable-js azure-functions-durable-powershell azure-functions-durable-python azure-functions-extension-bundles azure-functions-golang-worker azure-functions-host azure-functions-java-library azure-functions-java-worker azure-functions-kafka-extension azure-functions-language-worker-protobuf azure-functions-mcp-extension azure-functions-nodejs-e2e-tests azure-functions-nodejs-library azure-functions-nodejs-opentelemetry azure-functions-nodejs-worker azure-functions-openai-extension azure-functions-powershell-library azure-functions-powershell-opentelemetry azure-functions-powershell-worker azure-functions-python-extensions azure-functions-python-library azure-functions-python-worker azure-functions-rabbitmq-extension azure-functions-skills azure-functions-sql-extension azure-functions-templates azure-functions-tooling-feed azure-functions-vs-build-sdk azure-webjobs-sdk azure-webjobs-sdk-extensions azure-websites-security checkaccess-v2-go-sdk Connectors-NET-LSP Connectors-NET-Samples Connectors-NET-SDK Connectors-NodeJS-SDK connectors-python-sdk durabletask functions-action functions-container-action homebrew-functions sonic-gnmi.msft

microsoft (10)

DurableFunctionsMonitor durabletask-dotnet durabletask-go durabletask-java durabletask-js durabletask-mssql durabletask-netherite durabletask-protobuf Microsoft-Performance-Tools-Apple secure-azureai-agent

Azure-Samples (13)

azure-ai-content-understanding-python azure-container-apps-multi-agent-workflow azure-container-apps-sandboxes azure-functions-java-flex-consumption-azd azure-functions-nodejs-opentelemetry-samples azure-search-openai-demo-purviewdatasecurity functions-connectors-python functions-connectors-typescript llm-fine-tuning openai-chat-app-entra-auth-builtin openai-chat-app-entra-auth-local rag-postgres-openai-python tutor

MicrosoftDocs (1)

windows-driver-docs

sph 10 hours ago||

There is such a thing as too much software.

trumpdong 9 hours ago|||

Indeed. Every line of code is like a liability, but managers suddenly decided to stack rank developers based on number of lines of code written, again, which is like ranking aircraft designs by how heavy they are.

marcosdumay 5 hours ago|||

Microservices have got all the attention, but at around the same time there existed the microlibraries fashion too.

And just like the other one, the people proposing those microlibraries knew what they were doing and had actually reasonable ideas. But masses of FAANG developers took it and run wild.

jbverschoor 11 hours ago||

Note that also the homebrew-tap was affected: homebrew-functions

skeledrew 6 hours ago||

Can't say I expect better. This is part of why I've been jumping away from things acquired/owned by them for the past 13+ years.

mortar 6 hours ago||

https://archive.is/bnm7u

axegon_ 11 hours ago||

I hate to be the "I told you" guy but... I told you and have been for years. And every time I do, a flock of sloppers come to say "but have you tried the claude sloppus, it's so good man, I haven't written any code in X months". Well.. Enjoy.

glemmaPaul 10 hours ago||

[dead]

opsnooperfax 7 hours ago|

And the criminals found that Microsoft has yet to produce and AI worth stealing. A deeply ironic twist.

bdcravens 7 hours ago|

That makes for a funny tongue in cheek comment, but it's not MS's AI they're after, it's end user secrets, and the exploits target multiple LLMs. (by adding commands to relevant MD files)

More comments...