https://finch-blog.pages.dev/tags/security/ Recent content in Security on AI Dev Tools Blog Hugo en-us Tue, 26 May 2026 00:00:00 +0000 https://finch-blog.pages.dev/posts/fake-ai-tools-credential-theft-security-2026/ Tue, 26 May 2026 00:00:00 +0000 https://finch-blog.pages.dev/posts/fake-ai-tools-credential-theft-security-2026/ <p>In May 2026, security researchers uncovered a wave of fake AI tool websites designed specifically to steal developer credentials, GitHub tokens, and API keys. Scammers registered domains that mimicked legitimate developer tools, created convincing landing pages, and distributed links through social media, forums, and even compromised npm packages.</p> <p>This isn&rsquo;t phishing 1.0. It&rsquo;s supply chain attacks disguised as developer productivity tools. Here&rsquo;s everything you need to know to stay safe.</p>