Attack targeting OpenAI Codex users exposes AI software supply chain risks
Summary
A malicious npm package named codexui-android, disguised as a remote UI for OpenAI Codex, has been found to exfiltrate developer authentication tokens. Attackers allegedly injected malicious code into the published package that was not present in its public GitHub repository, highlighting risks in the AI software supply chain.
IFF Assessment
The discovery of a malicious package that steals AI developer tokens represents a new attack vector and a significant risk to organizations relying on AI tools.
Defender Context
This incident highlights a critical blind spot in software supply chain security, specifically concerning the distribution of software artifacts rather than just source code. Defenders must be vigilant about the integrity of packages and dependencies, especially those related to AI development tools, as attackers can inject malicious code directly into published versions.