A stylized illustration of a cylindrical cup with blue arrows and lines indicating a swirling or rotational motion inside the cup.
Briefs
Finance
Free NewsletterPro Login

Microsoft Pulled Dozens Of Open Source Tools After A Password-Stealing Hack

Cierra Seay
Published Jun 10, 2026
Share:
A dimly lit server room filled with racks of servers, mostly displaying green lights, except for one server with alarming red lights. The BriefsFinance logo appears in the bottom right corner.
Summary:
  • Microsoft turned off at least 70 of its open source projects on GitHub after hackers hid password-stealing code in them.
  • Many projects were tied to Azure and to tools used inside AI coding apps like Claude Code, Gemini, and VS Code.
  • Microsoft says it warned a small number of customers who may have downloaded the bad code.

The tools were built to help people code with AI. Instead, they quietly stole passwords.

Microsoft has pulled dozens of its own projects offline. Hackers had hidden bad code inside them.

What Happened

At least 70 Microsoft projects went dark. They sit on GitHub, the code site Microsoft owns.

These are open source projects. That just means the code is public for anyone to use.

Many were tied to Azure, Microsoft's cloud service. Others were tools coders use to build with AI.

Those apps include Claude Code, Gemini, and VS Code. A coder would open one of the tools as normal.

Then the hidden code went to work. It grabbed their passwords and logins.

The bad code aimed at people who build with AI. That's a fast-growing group.

Two security teams caught it early. They go by Cloudsmith and OpenSourceMalware.

The news site 404 Media first reported the takedown.

Microsoft says it pulled the projects to look into them. It later put some back after a review.

A warning now loads on the blocked pages. It says access was turned off for breaking the rules.

GitHub is owned by Microsoft, so it could act fast.

Hacks like this keep moving markets. We cover the ones that matter each morning in Market Briefs, plus a free investing masterclass when you join.

Why This Is Bigger Than One Company

This kind of hack has a name. It's called a supply chain attack.

Hackers don't go after you directly. Instead, they poison shared code.

That code then lands inside lots of other software.

It's a smart target. Coders often hold the keys to cloud systems and customer data.

What stands out here is the victim. Small projects get hit all the time, but a giant like Microsoft rarely does.

Big firms have strong security teams. That's why a breach like this is rare for them.

Microsoft is one of the world's most valuable firms. It also owns GitHub, where much of the world's code lives.

So a hit here spreads a long way. And this wasn't a one-off.

It's the second strike in weeks. A Microsoft project called Durable Task was hacked in mid-May.

Experts say this looks like a repeat hit on the same code.

For investors, the trend is the real story. These attacks are on the rise.

Each one can hit thousands of users at once. So the stakes keep going up.

Microsoft also sits in many index funds. So a breach like this draws extra eyes.

Worth Noting

Microsoft says it warned the users who may have grabbed the bad code. But it hasn't said how many were hit.

It also hasn't shared a full count of downloads. It says it will reach out if more action is needed.

The firm owns GitHub and still got breached twice in a month. So every team that leans on open source has reason to look twice.

Sign up for the daily Market Briefs newsletter and a 45-minute investing course lands in your inbox at no charge.

Disclosure

Get Market Briefs delivered to your inbox every morning for free!

No fluff. No noise. No politics. Just finance news you can read in 5 minutes.

Recent News

1 2 3 737

Blogs

May 30, 2026
Financial Literacy Books That Actually Build Wealth
By Nate Gregory
  • The best financial literacy books don't just teach budgeting, they shift how you think about money.
  • Two classics stand out: The Intelligent Investor for valuing investments, and Rich Dad Poor Dad for the owner's mindset.
  • Reading is only step one. The real wealth comes from acting on what you learn.
Read More
May 30, 2026
What Is a Roth Conversion? A Simple Guide
By Milena Thomas
  • A Roth conversion moves money from a traditional retirement account into a Roth account.
  • You pay taxes on the money now, in exchange for tax-free growth and withdrawals later.
  • It can pay off if you expect higher taxes or more income in the future, but the timing and tax hit matter a lot.
Read More
May 30, 2026
Trailing Stop Loss: How to Protect Your Gains
By Andre Savage
  • A trailing stop loss is an order that automatically sells a stock if it falls a set percentage from its recent high.
  • As the stock rises, the sell point rises with it, locking in gains while capping losses.
  • It's most useful for active strategies like momentum investing, not for long-term buy-and-hold.
Read More
May 30, 2026
5 Types of Wealth: Why Money Is Only One of Them
By Nate Gregory
  • Real wealth is more than a bank balance. It spans your finances, health, mind, purpose, and freedom.
  • Money is powerful, but it amplifies the life you already have rather than fixing a broken one.
  • True financial wealth means your cash flow covers your expenses, so your money works while you live.
Read More
May 30, 2026
How to Invest in Private Equity: A Beginner's Guide
By Jackson Moreland
  • Private equity means investing in companies that aren't listed on the stock market.
  • Traditional private equity is built for experienced, high-net-worth investors with large amounts to invest.
  • New rules have opened more accessible paths, like startup crowdfunding and real estate deals, often starting around $100.
Read More
May 30, 2026
What Is a Call Option? A Simple Guide With Examples
By Nate Gregory
  • A call option gives you the right to buy a stock at a set price by a set date.
  • Investors buy calls when they expect a stock to rise, using less money than buying the shares outright.
  • The most you can lose buying a call is the premium, but time works against you, so it's an advanced tool.
Read More
May 30, 2026
EBITDA Formula: How to Calculate It Step by Step
By Cierra Seay
  • EBITDA stands for Earnings Before Interest, Taxes, Depreciation, and Amortization, a measure of a company's core profit.
  • The formula adds those four items back to net income to show what the underlying business earns.
  • Investors use EBITDA to compare companies and to judge how many times earnings a stock is selling for.
Read More
May 30, 2026
What Is a Stock Option? A Plain-English Guide
By Nate Gregory
  • A stock option is a contract giving you the right, but not the obligation, to buy or sell a stock at a set price by a set date.
  • There are two types: calls (the right to buy) and puts (the right to sell).
  • Options are powerful but risky, so they suit investors who already have the basics down.
Read More
May 30, 2026
Put Option: What It Is and How It Works
By Kalbir Talwar
  • A put option gives you the right to sell a stock at a set price by a set date.
  • Investors use puts to bet a stock will fall, or as insurance to protect shares they own.
  • The most you can lose buying a put is the premium you paid, which makes it a defined-risk tool.
Read More
May 30, 2026
Operating Margin: What It Is and How to Calculate It
By Jackson Moreland
  • Operating margin shows how much profit a company keeps from its core business after paying its running costs.
  • The formula is operating income divided by revenue, shown as a percent.
  • A strong, steady operating margin signals a well-run business that controls its costs.
Read More
1 2 3 22
Share via
Facebook
X (Twitter)
LinkedIn
Mix
Pinterest
Bluesky
Tumblr
Skype
Buffer
Pocket
VKontakte
Parler
Xing
Reddit
Line
Flipboard
MySpace
Delicious
Amazon
Digg
Evernote
Blogger
LiveJournal
Baidu
MeWe
NewsVine
Yummly
Yahoo
WhatsApp
Viber
SMS
Telegram
Facebook Messenger
Like
Email
Print
Copy Link
Copy link
CopyCopied