Skip to content
  • Home
  • Cyber Map
  • About Us – Contact
  • Disclaimer
  • Terms and Rules
  • Privacy Policy
Cyber Web Spider Blog – News

Cyber Web Spider Blog – News

Globe Threat Map provides a real-time, interactive 3D visualization of global cyber threats. Monitor DDoS attacks, malware, and hacking attempts with geo-located arcs on a rotating globe. Stay informed with live logs and archive stats.

  • Home
  • Cyber Map
  • Cyber Security News
  • Security Week News
  • The Hacker News
  • How To?
  • Toggle search form
Supply Chain Attack Exposes OpenAI Codex Tokens

Supply Chain Attack Exposes OpenAI Codex Tokens

Posted on June 1, 2026 By CWS

In a concerning development for technology enthusiasts and professionals, cybersecurity researchers have uncovered a sophisticated supply chain attack targeting developers utilizing OpenAI Codex. This attack, conducted through a seemingly legitimate remote web UI tool named codexui-android, has left many developers vulnerable to data breaches involving authentication tokens.

The Nature of the Attack

The tool, promoted on GitHub and npm, is designed as a remote interface for OpenAI Codex and has been downloaded over 29,000 times weekly. Unlike typical attacks that rely on deceptive package names, this malicious activity embeds harmful code within an actively developed and functional npm package, which remains accessible on the repository.

According to Aikido Security’s Charlie Eriksen, the attack involves surreptitious exfiltration of Codex authentication tokens to a server controlled by the attackers. The modified code was integrated into the package about a month after its initial publication, likely to gain user trust. The npm account linked to this package is attributed to an individual identified as Igor Levochkin.

Details of the Security Breach

Embedded within the package is code that extracts and transmits Codex’s authentication details to a remote server mimicking the legitimate Sentry platform. This data includes access tokens and other sensitive identifiers, posing significant security risks. Notably, the refresh token, which does not expire, allows attackers to impersonate users indefinitely.

OpenAI advises treating the local storage of these tokens with the same caution as passwords, warning against sharing or exposing them inadvertently. Aikido Security has also identified an Android app named OpenClaw Codex Claude AI Agent, which incorporates the same malicious npm package within its operations, further spreading the risk to mobile devices.

Response and Implications

The app, developed by an entity called BrutalStrike, has been downloaded over 50,000 times, with additional apps from the same developer displaying similar vulnerabilities. Efforts to contact the package author on GitHub resulted in claims of lost account access, followed by statements of internal investigation and removal of the malicious functions.

This incident is part of a broader trend where threat actors target AI development tools to infiltrate the software supply chain and steal credentials. It highlights the importance of vigilant security measures and rapid response to potential threats in the digital landscape.

In related news, a flaw in Google’s API key revocation process was recently discovered, where deleted keys remained active for 23 minutes, posing additional risks. This vulnerability underscores the ongoing challenges in securing cloud environments against unauthorized access.

The findings emphasize the critical need for improved security protocols and swift action to mitigate vulnerabilities in software development and deployment processes.

The Hacker News Tags:AI tools, Aikido Security, authentication tokens, Codex, credential theft, Cybersecurity, data protection, Developers, GitHub, malicious packages, NPM, OpenAI, security breach, Software Security, supply chain attack

Post navigation

Previous Post: Microsoft Clarifies Legal Stance on Security Research
Next Post: Critical Linux Kernel Flaw Endangers Systems with Root Access

Related Posts

Salesloft OAuth Breach via Drift AI Chat Agent Exposes Salesforce Customer Data Salesloft OAuth Breach via Drift AI Chat Agent Exposes Salesforce Customer Data The Hacker News
CISA Flags Critical ASUS Live Update Flaw After Evidence of Active Exploitation CISA Flags Critical ASUS Live Update Flaw After Evidence of Active Exploitation The Hacker News
Proxy Botnet, Office Zero-Day, MongoDB Ransoms, AI Hijacks & New Threats Proxy Botnet, Office Zero-Day, MongoDB Ransoms, AI Hijacks & New Threats The Hacker News
Ivanti, Fortinet, SAP Address Critical Security Flaws Ivanti, Fortinet, SAP Address Critical Security Flaws The Hacker News
AI Chatbots Lead Users to Cryptojacking Malware Sites AI Chatbots Lead Users to Cryptojacking Malware Sites The Hacker News
CISA Urges Patching of Apple and CMS Vulnerabilities CISA Urges Patching of Apple and CMS Vulnerabilities The Hacker News

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Recent Posts

  • 7-Zip Flaw Risks Remote Code Execution for Millions
  • Hackers Sentenced for Disrupting London Transport Systems
  • JetBrains Fixes Critical Security Flaws in Key Products
  • Dutch Police Break Up €100 Million Fraud Network
  • AI Security Testing Evolves with New Threats

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Archives

  • July 2026
  • June 2026
  • May 2026
  • April 2026
  • March 2026
  • February 2026
  • January 2026
  • December 2025
  • November 2025
  • October 2025
  • September 2025
  • August 2025
  • July 2025
  • June 2025
  • May 2025

Recent Posts

  • 7-Zip Flaw Risks Remote Code Execution for Millions
  • Hackers Sentenced for Disrupting London Transport Systems
  • JetBrains Fixes Critical Security Flaws in Key Products
  • Dutch Police Break Up €100 Million Fraud Network
  • AI Security Testing Evolves with New Threats

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Copyright © 2026 Cyber Web Spider Blog – News.

Powered by PressBook Masonry Dark