← Back to feed Tech & Digital

Agents hooked into GitHub can steal creds – but Anthropic, Google, and Microsoft haven't warned users

The Register / 15 April 2026 / 7h ago
Agents hooked into GitHub can steal creds – but Anthropic, Google, and Microsoft haven't warned users
Culture Index
73
Score Breakdown
Relevance
9/25
Freshness
25/25
Authority
18/20
Brand Signal
17/15
Depth
4/15
5-Axis Cultural Radar
Relevance Freshness Authority Brand Depth
Researchers who found the flaws scored beer money bounties and warn the problem is probably pervasive Exclusive Security researchers hijacked three popular AI agents that integrate with GitHub Actions by using a new type of prompt injection attack to steal API keys and access tokens, and the vendors who run agents didn’t disclose the problem.…
Read Full Article → The Register ↗

More in Tech & Digital

Techmeme

Accel raised $5B, including a $4B Leaders fund, focused on writing large checks to late-stage startups globally, and a $650M sidecar fund, taking AUM to $36B (Rebecca Torrence/Bloomberg)

80
Hypebeast

Sony Drops the 27-Inch INZONE M10S II OLED Monitor

78
Techmeme

London-based Gizmo, which uses AI to turn young students' notes into gamified study materials, raised a $22M Series A led by Shine Capital and reports 13M users (Natalie Breymeyer/Axios)

76