OpenAI Codex tool with over 29,000 downloads linked to malicious npm supply chain attack stealing authentication tokens
TechRadar | the technology experts [Unofficial]
June 1, 2026
A tool started benign and turned sour after a little while, stealing tokens and granting persistent access.
Discussion in the ATmosphere