
{"id":7510,"date":"2026-06-15T18:41:26","date_gmt":"2026-06-15T16:41:26","guid":{"rendered":"https:\/\/parlonstechs.com\/all\/?p=7510"},"modified":"2026-06-15T18:41:26","modified_gmt":"2026-06-15T16:41:26","slug":"73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc","status":"publish","type":"post","link":"https:\/\/parlonstechs.com\/all\/2026\/06\/15\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\/","title":{"rendered":"73 d\u00e9p\u00f4ts GitHub de Microsoft pirat\u00e9s : ouvrir un projet IA suffit \u00e0 compromettre votre PC"},"content":{"rendered":"<p><img decoding=\"async\" src=\"https:\/\/pic.clubic.com\/46c7f6812417821\/1600x900\/smart\/github.jpg\" alt=\"73 d\u00e9p\u00f4ts GitHub de Microsoft pirat\u00e9s : ouvrir un projet IA suffit \u00e0 compromettre votre PC \u00a9Shutterstock \" \/><\/p>\n<h2><strong>En fin de semaine derni\u00e8re, un ver informatique baptis\u00e9 Miasma a compromis 73 d\u00e9p\u00f4ts GitHub de Microsoft en moins de deux minutes. L&rsquo;attaque s&rsquo;est appuy\u00e9e sur des identifiants de contributeur vol\u00e9s pour r\u00e9cup\u00e9rer des donn\u00e9es d\u00e8s l&rsquo;ouverture d&rsquo;un d\u00e9p\u00f4t infect\u00e9.<\/strong><\/h2>\n<p>GitHub a neutralis\u00e9 73 d\u00e9p\u00f4ts r\u00e9partis sur quatre organisations de Microsoft : Azure, Azure-Samples, Microsoft et MicrosoftDocs. Le m\u00e9canisme de d\u00e9sactivation automatique a tout neutralis\u00e9 en 105 secondes. Un message appara\u00eet expliquant que l&rsquo;acc\u00e8s a \u00e9t\u00e9 d\u00e9sactiv\u00e9 pour violation des conditions d&rsquo;utilisation.<\/p>\n<p>&nbsp;<\/p>\n<div class=\"grid-default\">\n<div class=\"row-wrapper row\">\n<div class=\"slate-content col-slate-12\">\n<h2 class=\"sc-1u2uxcx-0 HsQQi\">Ouvrir un d\u00e9p\u00f4t dans son IDE pour d\u00e9clencher le vol d&rsquo;identifiants<\/h2>\n<\/div>\n<\/div>\n<\/div>\n<div class=\"grid-default\">\n<div data-react-no-hydrate=\"true\">\n<div class=\"div-breakable\" data-adslot-top=\"1791.513916015625\">L&rsquo;attaquant a acc\u00e9d\u00e9 au d\u00e9p\u00f4t Azure\/durabletask avec des identifiants de contributeur compromis. Aucune ligne de code existante n&rsquo;a \u00e9t\u00e9 modifi\u00e9e. Cinq fichiers de configuration ont \u00e9t\u00e9 ajout\u00e9s, chacun ciblant un outil de d\u00e9veloppement populaire : Claude Code, Gemini CLI, Cursor, VS Code et le script de test npm.<\/div>\n<\/div>\n<div class=\"row-wrapper row\">\n<div class=\"slate-content col-slate-12\">\n<div data-react-no-hydrate=\"true\">\n<div class=\"div-breakable\" data-adslot-top=\"1952.27783203125\"><\/div>\n<\/div>\n<p class=\"sc-9e1vpx-0 jVoltE\">Quand un d\u00e9veloppeur clone le d\u00e9p\u00f4t et l&rsquo;ouvre dans l&rsquo;un de ces outils, les fichiers de configuration ex\u00e9cutent automatiquement un script obfusqu\u00e9 de 4,3 Mo. Ce dernier collecte les jetons d&rsquo;authentification et mots de passe stock\u00e9s localement pour des dizaines de services cloud et d&rsquo;outils d\u00e9veloppeurs. Cela inclut AWS, Azure, GCP, Kubernetes, npm et GitHub. Une fois collect\u00e9s, les identifiants permettent ensuite de propager le ver dans d&rsquo;autres d\u00e9p\u00f4ts accessibles depuis les comptes compromis.<\/p>\n<p>Le commit malveillant \u00e9tait en outre antidat\u00e9 \u00e0 2020 et portait un flag [skip ci]. Cette instruction d\u00e9sactive les v\u00e9rifications automatiques des pipelines CI\/CD. Ces cha\u00eenes testent et d\u00e9ploient le code de fa\u00e7on continue. Le commit passait ainsi sans d\u00e9clencher les alertes de s\u00e9curit\u00e9 habituelles.<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/pic.clubic.com\/8ad40bda2419099\/1140x795\/smart\/github-compromission.png\" alt=\"Github compromission\" \/><\/p>\n<p>&nbsp;<\/p>\n<div class=\"grid-default\">\n<div class=\"row-wrapper row\">\n<div class=\"slate-content col-slate-12\">\n<h2 class=\"sc-1u2uxcx-0 HsQQi\">Miasma, h\u00e9ritier du ver Mini Shai-Hulud<\/h2>\n<\/div>\n<\/div>\n<\/div>\n<div class=\"grid-default\">\n<div data-react-no-hydrate=\"true\">\n<div class=\"div-breakable\" data-adslot-top=\"2958.166748046875\">Miasma n&rsquo;est pas vraiment nouveau. Les chercheurs le rattachent \u00e0 Mini Shai-Hulud, un ver rendu public par le groupe TeamPCP en mai dernier. Le m\u00eame compte de contributeur avait d\u00e9j\u00e0 servi lors d&rsquo;une attaque sur le package PyPI d&rsquo;Azure\/durabletask. Les identifiants vol\u00e9s lors de cet \u00e9pisode n&rsquo;avaient apparemment jamais \u00e9t\u00e9 r\u00e9voqu\u00e9s. D\u00e9but juin, une premi\u00e8re vague\u00a0avait atteint 32 paquets npm sous le namespace @redhat-cloud-services avant que les d\u00e9p\u00f4ts Microsoft ne soient touch\u00e9s \u00e0 leur tour.<\/div>\n<\/div>\n<div class=\"row-wrapper row\">\n<div class=\"slate-content col-slate-12\">\n<div data-react-no-hydrate=\"true\">\n<div class=\"div-breakable\" data-adslot-top=\"3177.236083984375\"><\/div>\n<\/div>\n<p class=\"sc-9e1vpx-0 jVoltE\">Miasma n&rsquo;exploite aucune faille pr\u00e9cise dans GitHub ou npm et c&rsquo;est pr\u00e9cis\u00e9ment ce qui le rend difficile \u00e0 d\u00e9tecter. Il abuse du mod\u00e8le de confiance de ces plateformes. Un commit sign\u00e9 avec un compte valide est trait\u00e9 comme une mise \u00e0 jour l\u00e9gitime, m\u00eame si ce compte est entre les mains d&rsquo;un attaquant. Comme l&rsquo;ont relev\u00e9 les chercheurs de\u00a0<a class=\"un-styled-linked\" href=\"https:\/\/falconfeeds.io\/blogs\/shai-hulud-npm-pypi-supply-chain-worm-analysis\/\" target=\"_blank\" rel=\"noopener noreferrer\" data-mrf-link=\"https:\/\/falconfeeds.io\/blogs\/shai-hulud-npm-pypi-supply-chain-worm-analysis\/\">FalconFeeds.io,<\/a>\u00a0une fois le compte et la cl\u00e9 de signature compromis, chaque push malveillant ressemble \u00e0 de la maintenance ordinaire.<\/p>\n<div data-react-no-hydrate=\"true\">\n<div class=\"div-breakable\" data-adslot-top=\"3396.3056640625\"><\/div>\n<\/div>\n<p class=\"sc-9e1vpx-0 jVoltE\">La mise hors ligne d&rsquo;Azure\/functions-action a provoqu\u00e9 des interruptions en cascade. Cet outil est une brique d&rsquo;automatisation officielle de Microsoft : il permet aux \u00e9quipes de livrer du code directement sur Azure Functions, le service cloud qui fait tourner des programmes sans avoir \u00e0 g\u00e9rer de serveurs. D\u00e8s sa suspension, toutes les cha\u00eenes de d\u00e9ploiement qui en d\u00e9pendaient se sont fig\u00e9es.<\/p>\n<div data-react-no-hydrate=\"true\">\n<div class=\"div-breakable\" data-adslot-top=\"3586.22216796875\"><\/div>\n<\/div>\n<p class=\"sc-9e1vpx-0 jVoltE\">Trois actions sont requises. La premi\u00e8re consiste \u00e0 r\u00e9g\u00e9n\u00e9rer tous les jetons d&rsquo;authentification des comptes concern\u00e9s. Un jeton, c&rsquo;est l&rsquo;\u00e9quivalent d&rsquo;un mot de passe automatique qui permet \u00e0 un outil d&rsquo;acc\u00e9der \u00e0 vos ressources cloud sans intervention manuelle. S&rsquo;il a \u00e9t\u00e9 vol\u00e9, le remplacer le rend d&#8217;embl\u00e9e inutilisable par l&rsquo;attaquant. Ensuite, il est n\u00e9cessaire de v\u00e9rifier que le ver n&rsquo;a pas cr\u00e9\u00e9 de d\u00e9p\u00f4ts publics non autoris\u00e9s dans les organisations GitHub affect\u00e9es. C&rsquo;est pr\u00e9cis\u00e9ment dans ce type de d\u00e9p\u00f4ts qu&rsquo;il stocke les identifiants vol\u00e9s. Enfin, il est conseill\u00e9 d&rsquo;\u00e9pingler les GitHub Actions \u00e0 un identifiant de commit pr\u00e9cis plut\u00f4t qu&rsquo;\u00e0 un tag. Un tag comme \u00ab\u00a0@v1\u00a0\u00bb peut \u00eatre modifi\u00e9 et un attaquant qui contr\u00f4le le d\u00e9p\u00f4t peut le faire pointer vers du code malveillant sans que rien ne change en apparence. Un identifiant de commit, lui, est fig\u00e9 et d\u00e9signe toujours exactement la m\u00eame version du code.<\/p>\n<p>via clubic<\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>En fin de semaine derni\u00e8re, un ver informatique baptis\u00e9 Miasma a compromis 73 d\u00e9p\u00f4ts GitHub de Microsoft en moins de deux minutes. L&rsquo;attaque s&rsquo;est appuy\u00e9e sur des identifiants de contributeur [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":7511,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[21,195,11],"tags":[],"class_list":["post-7510","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-actualite","category-cyberespionnage","category-cybersecurite"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.4 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>73 d\u00e9p\u00f4ts GitHub de Microsoft pirat\u00e9s : ouvrir un projet IA suffit \u00e0 compromettre votre PC - Parlons Techs - Store<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/parlonstechs.com\/all\/2026\/06\/15\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\/\" \/>\n<meta property=\"og:locale\" content=\"fr_FR\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"73 d\u00e9p\u00f4ts GitHub de Microsoft pirat\u00e9s : ouvrir un projet IA suffit \u00e0 compromettre votre PC - Parlons Techs - Store\" \/>\n<meta property=\"og:description\" content=\"En fin de semaine derni\u00e8re, un ver informatique baptis\u00e9 Miasma a compromis 73 d\u00e9p\u00f4ts GitHub de Microsoft en moins de deux minutes. L&rsquo;attaque s&rsquo;est appuy\u00e9e sur des identifiants de contributeur [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/parlonstechs.com\/all\/2026\/06\/15\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\/\" \/>\n<meta property=\"og:site_name\" content=\"Parlons Techs - Store\" \/>\n<meta property=\"article:published_time\" content=\"2026-06-15T16:41:26+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/parlonstechs.com\/all\/wp-content\/uploads\/2026\/06\/ab-13.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"265\" \/>\n\t<meta property=\"og:image:height\" content=\"119\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"wisdom\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"\u00c9crit par\" \/>\n\t<meta name=\"twitter:data1\" content=\"wisdom\" \/>\n\t<meta name=\"twitter:label2\" content=\"Dur\u00e9e de lecture estim\u00e9e\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/2026\\\/06\\\/15\\\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/2026\\\/06\\\/15\\\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\\\/\"},\"author\":{\"name\":\"wisdom\",\"@id\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/#\\\/schema\\\/person\\\/a93526e9c6c72ccb484abb7008892823\"},\"headline\":\"73 d\u00e9p\u00f4ts GitHub de Microsoft pirat\u00e9s : ouvrir un projet IA suffit \u00e0 compromettre votre PC\",\"datePublished\":\"2026-06-15T16:41:26+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/2026\\\/06\\\/15\\\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\\\/\"},\"wordCount\":764,\"commentCount\":0,\"image\":{\"@id\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/2026\\\/06\\\/15\\\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/wp-content\\\/uploads\\\/2026\\\/06\\\/ab-13.jpg\",\"articleSection\":[\"Actualit\u00e9\",\"Cyberespionnage\",\"CyberS\u00e9curit\u00e9\"],\"inLanguage\":\"fr-FR\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/parlonstechs.com\\\/all\\\/2026\\\/06\\\/15\\\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/2026\\\/06\\\/15\\\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\\\/\",\"url\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/2026\\\/06\\\/15\\\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\\\/\",\"name\":\"73 d\u00e9p\u00f4ts GitHub de Microsoft pirat\u00e9s : ouvrir un projet IA suffit \u00e0 compromettre votre PC - Parlons Techs - Store\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/2026\\\/06\\\/15\\\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/2026\\\/06\\\/15\\\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/wp-content\\\/uploads\\\/2026\\\/06\\\/ab-13.jpg\",\"datePublished\":\"2026-06-15T16:41:26+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/#\\\/schema\\\/person\\\/a93526e9c6c72ccb484abb7008892823\"},\"breadcrumb\":{\"@id\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/2026\\\/06\\\/15\\\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\\\/#breadcrumb\"},\"inLanguage\":\"fr-FR\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/parlonstechs.com\\\/all\\\/2026\\\/06\\\/15\\\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"fr-FR\",\"@id\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/2026\\\/06\\\/15\\\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\\\/#primaryimage\",\"url\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/wp-content\\\/uploads\\\/2026\\\/06\\\/ab-13.jpg\",\"contentUrl\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/wp-content\\\/uploads\\\/2026\\\/06\\\/ab-13.jpg\",\"width\":265,\"height\":119},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/2026\\\/06\\\/15\\\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Accueil\",\"item\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"73 d\u00e9p\u00f4ts GitHub de Microsoft pirat\u00e9s : ouvrir un projet IA suffit \u00e0 compromettre votre PC\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/#website\",\"url\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/\",\"name\":\"Parlons Techs - Store\",\"description\":\"Toute L&#039;Actualit\u00e9 sur La Technologie et La Science\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"fr-FR\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/#\\\/schema\\\/person\\\/a93526e9c6c72ccb484abb7008892823\",\"name\":\"wisdom\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"fr-FR\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/e752642935d05c7ef20c7ff136e0baadd18b8f39f34dbcffed7f1221cb763284?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/e752642935d05c7ef20c7ff136e0baadd18b8f39f34dbcffed7f1221cb763284?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/e752642935d05c7ef20c7ff136e0baadd18b8f39f34dbcffed7f1221cb763284?s=96&d=mm&r=g\",\"caption\":\"wisdom\"},\"sameAs\":[\"https:\\\/\\\/parlonstechs.com\\\/all\"],\"url\":\"https:\\\/\\\/parlonstechs.com\\\/all\\\/author\\\/wisdom\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"73 d\u00e9p\u00f4ts GitHub de Microsoft pirat\u00e9s : ouvrir un projet IA suffit \u00e0 compromettre votre PC - Parlons Techs - Store","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/parlonstechs.com\/all\/2026\/06\/15\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\/","og_locale":"fr_FR","og_type":"article","og_title":"73 d\u00e9p\u00f4ts GitHub de Microsoft pirat\u00e9s : ouvrir un projet IA suffit \u00e0 compromettre votre PC - Parlons Techs - Store","og_description":"En fin de semaine derni\u00e8re, un ver informatique baptis\u00e9 Miasma a compromis 73 d\u00e9p\u00f4ts GitHub de Microsoft en moins de deux minutes. L&rsquo;attaque s&rsquo;est appuy\u00e9e sur des identifiants de contributeur [&hellip;]","og_url":"https:\/\/parlonstechs.com\/all\/2026\/06\/15\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\/","og_site_name":"Parlons Techs - Store","article_published_time":"2026-06-15T16:41:26+00:00","og_image":[{"width":265,"height":119,"url":"https:\/\/parlonstechs.com\/all\/wp-content\/uploads\/2026\/06\/ab-13.jpg","type":"image\/jpeg"}],"author":"wisdom","twitter_card":"summary_large_image","twitter_misc":{"\u00c9crit par":"wisdom","Dur\u00e9e de lecture estim\u00e9e":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/parlonstechs.com\/all\/2026\/06\/15\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\/#article","isPartOf":{"@id":"https:\/\/parlonstechs.com\/all\/2026\/06\/15\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\/"},"author":{"name":"wisdom","@id":"https:\/\/parlonstechs.com\/all\/#\/schema\/person\/a93526e9c6c72ccb484abb7008892823"},"headline":"73 d\u00e9p\u00f4ts GitHub de Microsoft pirat\u00e9s : ouvrir un projet IA suffit \u00e0 compromettre votre PC","datePublished":"2026-06-15T16:41:26+00:00","mainEntityOfPage":{"@id":"https:\/\/parlonstechs.com\/all\/2026\/06\/15\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\/"},"wordCount":764,"commentCount":0,"image":{"@id":"https:\/\/parlonstechs.com\/all\/2026\/06\/15\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\/#primaryimage"},"thumbnailUrl":"https:\/\/parlonstechs.com\/all\/wp-content\/uploads\/2026\/06\/ab-13.jpg","articleSection":["Actualit\u00e9","Cyberespionnage","CyberS\u00e9curit\u00e9"],"inLanguage":"fr-FR","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/parlonstechs.com\/all\/2026\/06\/15\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/parlonstechs.com\/all\/2026\/06\/15\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\/","url":"https:\/\/parlonstechs.com\/all\/2026\/06\/15\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\/","name":"73 d\u00e9p\u00f4ts GitHub de Microsoft pirat\u00e9s : ouvrir un projet IA suffit \u00e0 compromettre votre PC - Parlons Techs - Store","isPartOf":{"@id":"https:\/\/parlonstechs.com\/all\/#website"},"primaryImageOfPage":{"@id":"https:\/\/parlonstechs.com\/all\/2026\/06\/15\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\/#primaryimage"},"image":{"@id":"https:\/\/parlonstechs.com\/all\/2026\/06\/15\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\/#primaryimage"},"thumbnailUrl":"https:\/\/parlonstechs.com\/all\/wp-content\/uploads\/2026\/06\/ab-13.jpg","datePublished":"2026-06-15T16:41:26+00:00","author":{"@id":"https:\/\/parlonstechs.com\/all\/#\/schema\/person\/a93526e9c6c72ccb484abb7008892823"},"breadcrumb":{"@id":"https:\/\/parlonstechs.com\/all\/2026\/06\/15\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\/#breadcrumb"},"inLanguage":"fr-FR","potentialAction":[{"@type":"ReadAction","target":["https:\/\/parlonstechs.com\/all\/2026\/06\/15\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\/"]}]},{"@type":"ImageObject","inLanguage":"fr-FR","@id":"https:\/\/parlonstechs.com\/all\/2026\/06\/15\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\/#primaryimage","url":"https:\/\/parlonstechs.com\/all\/wp-content\/uploads\/2026\/06\/ab-13.jpg","contentUrl":"https:\/\/parlonstechs.com\/all\/wp-content\/uploads\/2026\/06\/ab-13.jpg","width":265,"height":119},{"@type":"BreadcrumbList","@id":"https:\/\/parlonstechs.com\/all\/2026\/06\/15\/73-depots-github-de-microsoft-pirates-ouvrir-un-projet-ia-suffit-a-compromettre-votre-pc\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Accueil","item":"https:\/\/parlonstechs.com\/all\/"},{"@type":"ListItem","position":2,"name":"73 d\u00e9p\u00f4ts GitHub de Microsoft pirat\u00e9s : ouvrir un projet IA suffit \u00e0 compromettre votre PC"}]},{"@type":"WebSite","@id":"https:\/\/parlonstechs.com\/all\/#website","url":"https:\/\/parlonstechs.com\/all\/","name":"Parlons Techs - Store","description":"Toute L&#039;Actualit\u00e9 sur La Technologie et La Science","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/parlonstechs.com\/all\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"fr-FR"},{"@type":"Person","@id":"https:\/\/parlonstechs.com\/all\/#\/schema\/person\/a93526e9c6c72ccb484abb7008892823","name":"wisdom","image":{"@type":"ImageObject","inLanguage":"fr-FR","@id":"https:\/\/secure.gravatar.com\/avatar\/e752642935d05c7ef20c7ff136e0baadd18b8f39f34dbcffed7f1221cb763284?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/e752642935d05c7ef20c7ff136e0baadd18b8f39f34dbcffed7f1221cb763284?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/e752642935d05c7ef20c7ff136e0baadd18b8f39f34dbcffed7f1221cb763284?s=96&d=mm&r=g","caption":"wisdom"},"sameAs":["https:\/\/parlonstechs.com\/all"],"url":"https:\/\/parlonstechs.com\/all\/author\/wisdom\/"}]}},"_links":{"self":[{"href":"https:\/\/parlonstechs.com\/all\/wp-json\/wp\/v2\/posts\/7510","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/parlonstechs.com\/all\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/parlonstechs.com\/all\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/parlonstechs.com\/all\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/parlonstechs.com\/all\/wp-json\/wp\/v2\/comments?post=7510"}],"version-history":[{"count":2,"href":"https:\/\/parlonstechs.com\/all\/wp-json\/wp\/v2\/posts\/7510\/revisions"}],"predecessor-version":[{"id":7513,"href":"https:\/\/parlonstechs.com\/all\/wp-json\/wp\/v2\/posts\/7510\/revisions\/7513"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/parlonstechs.com\/all\/wp-json\/wp\/v2\/media\/7511"}],"wp:attachment":[{"href":"https:\/\/parlonstechs.com\/all\/wp-json\/wp\/v2\/media?parent=7510"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/parlonstechs.com\/all\/wp-json\/wp\/v2\/categories?post=7510"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/parlonstechs.com\/all\/wp-json\/wp\/v2\/tags?post=7510"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}