Attack targeting OpenAI Codex users exposes AI software supply chain risks

InfoWorld
Jun 2, 2026, 6:00 am200 ptsTrendingTop
A malicious npm package posing as a remote user interface for OpenAI Codex exfiltrated developer authentication tokens, after attackers allegedly published code to npm that was not visible in the project’s public GitHub repository. Researchers at Aikido said the package, called codexui-android, appeared to…

Read Article Share
Share Article
- email
- x.com
- facebook
- pocket
- reddit
- tumblr
- linkedin
- pinterest

Trending Today on Tech News Tube

Data Image to show rugged high-brightness displays for AI unmanned vehicles at COMPUTEX

Digitimes

Data Image to show rugged high-brightness displays for AI unmanned vehicles at COMPUTEX 130

Bernie Sanders Continues to Be Only Democrat(ish) Lawmaker Willing to Govern on AI

Gizmodo

Bernie Sanders Continues to Be Only Democrat(ish) Lawmaker Willing to Govern on AI 130

ASUS's ExpertBook B5 Flip G2 is a 2.9 pound 360 touchscreen laptop

Engadget

ASUS's ExpertBook B5 Flip G2 is a 2.9 pound 360 touchscreen laptop 130

Newly drafted EU cloud rules could stop US hyperscaler access to critical tenders

TechRadar

Newly drafted EU cloud rules could stop US hyperscaler access to critical tenders 129

YMTC SSDs target Asia-Pacific consumer market from Taiwan

Digitimes

YMTC SSDs target Asia-Pacific consumer market from Taiwan 129

The AI availability gap is real, and it has nothing to do with the model

TechRadar

The AI availability gap is real, and it has nothing to do with the model 127

Huawei's Tau Law faces its hardest test: chip yield, not theory

Digitimes

Huawei's Tau Law faces its hardest test: chip yield, not theory 115

DeepSeek's pricing move could redistribute value across AI hardware market

Digitimes

DeepSeek's pricing move could redistribute value across AI hardware market 115

About Tech News Tube

Tech News Tube is a real time news feed of the latest technology news headlines.

Follow all of the top tech sites in one place, on the web or your mobile device.

Featured

Attack targeting OpenAI Codex users…

Attack targeting OpenAI Codex users exposes AI software supply chain risks

Amazon Prime members in the US can watch…

Amazon Prime members in the US can watch Spider-Man: Brand New Day two days…

STMicroelectronics doubles its…

STMicroelectronics doubles its data-centre revenue forecast to $1bn

Alphabet to raise $80bn in equity to…

Alphabet to raise $80bn in equity to fund its AI spending

Texas Adds Another Huge Solar Farm As…

Texas Adds Another Huge Solar Farm As ERCOT Grid Demand Soars

Agentic computing could reshape data…

Agentic computing could reshape data centers, PCs, robots, and vehicles, says…

These polite Canadian lawbreakers may…

These polite Canadian lawbreakers may soon be going legal under new e-bike law

SpaceX’s amended S-1 is sparking a…

SpaceX’s amended S-1 is sparking a major Tesla merger conversation

From code-first to intent-first:…

From code-first to intent-first: Microsoft Build 2026 could be the end of…

Power Integrations unveils 1700V GaN…

Power Integrations unveils 1700V GaN auxiliary PSU for AI data centers