"… developers who used AI agents to work with them should assume their systems are compromised…Compromised dev creds led to a legitimate GitHub OIDC token being requested. This was followed by a malicious build being published with valid SLSA provenance, which ultimately led to conventional scanners seeing it as a routine trusted update… able to act exactly as an authenticated publisher."https://arstechnica.com/security/2026/06/for-the-2nd-time-in-weeks-microsoft-packages-laced-with-credential-stealer/ https://404media.co/microsoft-hacked-to-deliver-malware-to-claude-and-gemini-users/#GitHub #Microsoft #AI #Claude #Gemini #Malware
Related
Is #AI Profitable ? No isaiprofitable.comIs AI Profitable Yet?
Is #AI Profitable ? No isaiprofitable.comIs AI Profitable Yet?
Inbox Zero heroes are rare: Only 20% of polled readers have total control over their emailsIt's not rare to find inboxes...
Inbox Zero heroes are rare: Only 20% of polled readers have total control over their emailsIt's not rare to find inboxes with tens of thousands of unread emails in our community.ht...
艦長はいつも「アメリカは仲間だ!」と言うんですが……Microsoftが「トークン資本経営」提唱 AI有効活用、人材にも相乗効果 https://www.nikkei.com/article/DGXZQOGN1606T0W6A610C200...
艦長はいつも「アメリカは仲間だ!」と言うんですが……Microsoftが「トークン資本経営」提唱 AI有効活用、人材にも相乗効果 https://www.nikkei.com/article/DGXZQOGN1606T0W6A610C2000000/#Apple #LLM #news #bot