The supply chain attack on third-party library Axios has forced OpenAI to revoke its code-signing certificate and require ...

OpenAI said a GitHub Actions workflow involved in signing Mac applications downloaded and executed a malicious version of ...

OpenAI is one of many organizations affected by the recent Axios supply chain attack attributed to North Korean hackers.

A supply-chain attack on the widely used Axios JavaScript library has raised fresh concern over the fragility of open-source software distribution after attackers slipped malicious code into two ...

All macOS users must update their OpenAI apps, including ChatGPT, to the latest versions following a security incident, ...

OpenAI is asking Mac users to update ChatGPT, Codex, Atlas, and Codex CLI after a security issue involving Axios and macOS ...

Hackers linked to North Korea compromised the widely used Axios npm package by tricking a maintainer into installing malware ...

The most widely used JavaScript HTTP library on the internet — embedded in millions of production applications, relied on by ...

Forty-five million weekly downloads. One compromised maintainer. Three hours of exposure before anyone noticed.

Hackers infiltrated Axios maintainers using fake Slack channels and Teams calls, then published infected packages.

Spread the loveIn a significant security incident that has sent shockwaves through the developer community, a North Korean state-sponsored hacking group has successfully compromised the popular Axios ...

Discover the details of the North Korean hack on Axios software. We explain how the UNC1069 group is stealing US ...