OpenAI says hackers stole limited credential data from a small subset of internal source code repositories accessed by two employees, after a supply chain attack affected their devices. The company reports no evidence that user data, production systems, intellectual property, or existing software installations were compromised. OpenAI traces the incident to an earlier TanStack open source breach, where attackers published 84 malicious software versions over a six-minute window. OpenAI is rotating signing certificates as a precaution, requiring macOS updates.
Swipe through stories, personalise your feed, and save articles for later — all on the app.
