"Cybersecurity researchers have disclosed details of a new malicious supply chain campaign that's targeting developers using OpenAI Codex through a legitimate-l
A new malicious supply chain campaign has been discovered targeting developers who use OpenAI Codex. The attack is embedded within a legitimate-looking npm package called codexui-android, which offers a remote web UI for OpenAI Codex and has garnered over 29,000 weekly downloads. Researchers found that for the past month, this package has been exfiltrating Codex authentication tokens to a server controlled by the attacker, with the malicious code introduced after the package gained user trust. AI
IMPACT Developers using OpenAI Codex via this tool are at risk of token theft, potentially compromising their access and data.