The Next Web

A popular OpenAI Codex tool with 29,000 weekly downloads has been quietly stealing developer tokens for a month

The codexui-android npm package silently exfiltrated OpenAI Codex auth tokens to an attacker server for a month, affecting 29,000 weekly downloads.
The Next Web

One click on GitHub.dev is all it takes to hand over your private repositories

A VS Code vulnerability in GitHub.dev lets attackers steal full GitHub OAuth tokens via a single malicious link, exposing all private repositories.
Android

Infostealer Malware Sneaks into Popular Codex UI Tool After One Month of Building Trust

Cybersecurity researchers at Aikido Security have uncovered a malicious supply chain attack targeting OpenAI Codex developers via the npm package “codexui-android”. While the associated GitHub ...
The Hacker News

OpenAI Codex Authentication Tokens Stolen in codexui-android npm Supply Chain Attack

Codex tokens were exfiltrated via a popular npm package, affecting users since v0.1.82 and enabling persistent account access ...

Websites have a new way to spy on visitors: Analyzing their SSD activity

Now sites have a new way to spy on their visitors: measuring subtle interactions with their solid-state drives. The technique ...

Understanding Tor: Anonymous Browsing, Usage, and Legal Aspects

Discover Tor, a privacy network for anonymous browsing. Learn how it's used, its legality, and who benefits from it, ...
Wall Street Journal

Trump Administration to Make Green Card Applicants File Overseas

WASHINGTON—Most applicants for green cards will need to go abroad to apply for permanent residency at an American Consulate, rather than filing from within the U.S. as they do now, the Trump ...
The Hollywood Reporter

Pentagon Releases Second Batch of UFO Files: “We Were Virtually Speechless”

Here are some of the best videos from the second drop of UAP videos, including a fighter jet shooting down a UFO and an account that left an intelligence officer "virtually speechless." By James ...
TWCN Tech News

Share files and folders with external users in OneDrive for Business

Cloud storage makes it easier to store and share large files with others online. OneDrive is one of the most popular cloud storage services for both personal and professional use. OneDrive has been a ...
TechCrunch

Notion just turned its workspace into a hub for AI agents

Productivity software maker Notion is stepping into the agentic era. In a livestreamed product announcement on Wednesday, the company, known best for its collaborative note-taking app, introduced a ...
The New York Times

Want to See the Epstein Files in Print? Here Are the 3,437 Volumes.

Documents related to Jeffrey Epstein, taking up more than 3,400 volumes and weighing over eight tons, have been printed and bound for display in a TriBeCa gallery. By Jesse McKinley It may be the most ...
Nieman Journalism Lab

“Affiliation, not just access”: Newsrooms try to move beyond membership to a focus on “belonging”

Facing declining trust, unreliable social platforms, and search traffic weakened by AI summaries, the media industry is looking for a deeper way to hold onto audiences. Could the answer be a sense of ...