Overview
- GitHub automatically disabled roughly 70–73 Microsoft repositories in a rapid sweep that security trackers say occurred on June 5 after automated defenses flagged malicious content.
- Microsoft confirmed it has temporarily removed those repositories and is investigating potential malicious commits and configuration files that triggered the takedowns.
- Researchers report the compromised code runs a small credential‑stealing payload that harvests passwords, cloud keys, Kubernetes secrets, password‑manager data and over 90 developer tool configurations when opened in AI coding agents.
- Security firms linked the activity to the threat actor tracked as TeamPCP and to a malware family called Miasma or Mini Shai‑Hulud that can exfiltrate OIDC tokens used in SLSA provenance and move laterally across cloud environments.
- Defenders are advised to assume compromise for exposed systems, rotate secrets and OIDC tokens, run secret scans, and watch for lateral access to AWS, Azure, GCP and developer workstations while investigators continue to analyze scope.