Microsoft packages laced with credential stealer

A security vulnerability has been identified in numerous Microsoft packages, with malicious code designed to steal credentials. This credential stealer is reportedly self-replicating and activates as soon as it is accessed by an AI agent. This discovery highlights a significant risk for organizations relying on AI for package management and software development. Users are strongly advised to exercise extreme caution and verify the integrity of any Microsoft packages before implementation to prevent potential data breaches and system compromises.