"The vulnerability came to light on March 31, 2026, when a malicious version of Axios was distributed. It was retrieved via an automated GitHub Actions process that OpenAI uses to sign its macOS applications."
"OpenAI is treating the situation as if a compromise may have occurred and has decided to revoke and replace the certificates. New certificates should mitigate risk."
"To prevent that scenario, the company has rolled out new certificates and re-released existing macOS applications. Users must update their OpenAI apps on macOS to the latest versions."
A security issue was identified in a third-party developer tool related to Axios, which was temporarily compromised. OpenAI's user data and systems were not affected, but the company decided to renew its macOS certificates as a precaution. The vulnerability was discovered on March 31, 2026, when a malicious version of Axios was distributed. OpenAI is replacing the certificates to prevent potential misuse. Users must update their OpenAI apps on macOS, as older versions will stop receiving updates after May 8, 2026.
Read at Techzine Global
Unable to calculate read time
Collection
[
|
...
]