Theft of OpenAI Codex tokens via npm package codexui-android and Android apps

Colleagues, please note: Aikido Security researchers found a campaign where the npm package codexui-android steals OpenAI Codex tokens.
- Malicious code reads ~/.codex/auth.json and sends access_token, refresh_token, id_token and account ID to sentry.anyclaw.store.
- The same is implemented in Android apps that run the package in PRoot and exfiltrate credentials.
- Researchers warn that refresh_token does not expire, enabling prolonged unauthorized access.
Why it matters: stolen tokens allow actions as the account and endanger the software supply chain.
Have you checked installed packages, local auth.json files, and revoked suspicious tokens?
#cybersecurity #supplychain #OpenAI #DevSecOps


Latest comments
No comments yet.