#credential stealer

For the 2nd time in weeks, Microsoft packages laced with credential stealer

Microsoft has identified malicious packages that automatically deploy credential-stealing malware when opened by AI agents, marking the second such incident in weeks. The threat exploits AI workflows to harvest sensitive login data.