A popular OpenAI Codex tool with 29,000 weekly downloads has been quietly stealing developer tokens for a month
03-06-2026 22:54 via thenextweb.com

A popular OpenAI Codex tool with 29,000 weekly downloads has been quietly stealing developer tokens for a month

The npm package looked legitimate. It had an active GitHub repository, steady development history, and roughly 29,000 weekly downloads. For developers using OpenAI Codex, it offered exactly what it advertised: a remote web UI for the AI coding tool. But for the past month, every invocation of codexui-android has also been silently reading the contents of […]
This story continues at The Next Web
Read more »

Web design news



Amazon’s new Proteus robot takes plain-language orders, headed to Europe in 2027
Amazon’s new Proteus robot takes plain-language orders, headed to Europe in 2027
Meta keeps delaying the Muse Spark API developers were promised
Meta keeps delaying the Muse Spark API developers were promised
Quantinuum prices its IPO at $1.68bn, setting a new bar for quantum
Quantinuum prices its IPO at $1.68bn, setting a new bar for quantum
SoftBank’s PayPay pushes into insurance with a 70.2% T&D Life stake
SoftBank’s PayPay pushes into insurance with a 70.2% T&D Life stake
Complexity is the ceiling: software design in the age of AI coding
Complexity is the ceiling: software design in the age of AI coding
KPMG puts Claude in front of all 276,000 staff in an Anthropic alliance
KPMG puts Claude in front of all 276,000 staff in an Anthropic alliance
Merantix Capital closes a €103m fund to back early-stage European AI
Merantix Capital closes a €103m fund to back early-stage European AI
Cerebras says it will work with everyone in AI hardware except NVIDIA
Cerebras says it will work with everyone in AI hardware except NVIDIA
SpaceX wins Texas county approval for Terafab reinvestment zone
SpaceX wins Texas county approval for Terafab reinvestment zone
Benchmark breaks its own rule with a $2bn raise and a first growth fund
Benchmark breaks its own rule with a $2bn raise and a first growth fund
Uber’s bet on Nuro is bigger than it let on, at close to $500m
Uber’s bet on Nuro is bigger than it let on, at close to $500m
Sam Altman tells Congress to fund AI testing, not to require model approvals
Sam Altman tells Congress to fund AI testing, not to require model approvals
A UK MP’s lawsuit could decide whether xAI answers for what Grok makes
A UK MP’s lawsuit could decide whether xAI answers for what Grok makes
Meta accuses Australia of breaching trade pact over news bargaining tax
Meta accuses Australia of breaching trade pact over news bargaining tax
Desktop versie