Microsoft Kills 70+ GitHub Repos After Hackers Plant Malware

Microsoft just hit the kill switch on more than 70 of its own GitHub repositories. The reason? Hackers managed to slip credential-stealing malware into them.

The affected repos include critical Azure-related tools like azure-functions-host — the kind of infrastructure countless developers depend on daily. Microsoft disabled access while it investigates how attackers apparently breached its open source projects.

The scope is significant. We're not talking about obscure side projects. These are core developer tools tied to Microsoft's cloud platform. Anyone who pulled code from these repos during the compromise window could potentially have exposed their credentials.

Microsoft is actively investigating the breach. Details on exactly how the hackers gained write access to the repositories remain unclear. The company hasn't disclosed a timeline for restoring access to the disabled projects.

For now, developers relying on these tools are stuck waiting.