A popular OpenAI Codex tool with 29,000 weekly downloads has been quietly stealing developer tokens for a month
03-06-2026 22:54 via thenextweb.com

A popular OpenAI Codex tool with 29,000 weekly downloads has been quietly stealing developer tokens for a month

The npm package looked legitimate. It had an active GitHub repository, steady development history, and roughly 29,000 weekly downloads. For developers using OpenAI Codex, it offered exactly what it advertised: a remote web UI for the AI coding tool. But for the past month, every invocation of codexui-android has also been silently reading the contents of […]
This story continues at The Next Web
Read more »

Apps & Smartphones news



Microsoft dropped the one survey question its employees actually cared about
Microsoft dropped the one survey question its employees actually cared about
Alphabet just raised $85 billion for AI, smashing the largest equity offering in history
Alphabet just raised $85 billion for AI, smashing the largest equity offering in history
Hackers asked Meta’s AI chatbot to hand over Instagram accounts, and it did
Hackers asked Meta’s AI chatbot to hand over Instagram accounts, and it did
Uber cuts nearly a quarter of its HR division as new president reshapes the company from the inside
Uber cuts nearly a quarter of its HR division as new president reshapes the company from the inside
Meta spent $400 million and fought the US government to buy a VR fitness app, then let its creators take it back
Meta spent $400 million and fought the US government to buy a VR fitness app, then let its creators take it back
One click on GitHub.dev is all it takes to hand over your private repositories
One click on GitHub.dev is all it takes to hand over your private repositories
Anthropic picks Morgan Stanley and Goldman Sachs to lead its IPO, with a SpaceX computing deal worth $1.25 billion per month buried in the fine print
Anthropic picks Morgan Stanley and Goldman Sachs to lead its IPO, with a SpaceX computing deal worth $1.25 billion per month buried in the fine print
The EU is asking households to cut electricity use during peak hours because AI data centres are straining the grid
The EU is asking households to cut electricity use during peak hours because AI data centres are straining the grid
Virtual barbarians at the gate: securing the AI blind spot
Virtual barbarians at the gate: securing the AI blind spot
EU tech sovereignty package: chip emergency powers and curbs on US cloud
EU tech sovereignty package: chip emergency powers and curbs on US cloud
EU tech sovereignty package: chip emergency powers and curbs on US cloud
Using a Galaxy S26 Ultra to vlog and edit an entire day
Tata licenses a Chinese EV platform to rescue its stalled premium push
Tata licenses a Chinese EV platform to rescue its stalled premium push
AI is saving workers hours a week. Most of it is being thrown away
AI is saving workers hours a week. Most of it is being thrown away
Suno raises at a $5.4bn valuation, more than doubling its worth in six months
Suno raises at a $5.4bn valuation, more than doubling its worth in six months
Desktop versie