Android

Infostealer Malware Sneaks into Popular Codex UI Tool After One Month of Building Trust

Cybersecurity researchers at Aikido Security have uncovered a malicious supply chain attack targeting OpenAI Codex developers via the npm package “codexui-android”. While the associated GitHub ...
The Hacker News

OpenAI Codex Authentication Tokens Stolen in codexui-android npm Supply Chain Attack

Codex tokens were exfiltrated via a popular npm package, affecting users since v0.1.82 and enabling persistent account access ...

Websites have a new way to spy on visitors: Analyzing their SSD activity

Now sites have a new way to spy on their visitors: measuring subtle interactions with their solid-state drives. The technique ...

Understanding Tor: Anonymous Browsing, Usage, and Legal Aspects

Discover Tor, a privacy network for anonymous browsing. Learn how it's used, its legality, and who benefits from it, ...

The DOJ wants to access the health records of minors. But why?

NPR's Juana Summers speaks with The 19th's Orion Rummer about a grand jury subpoena for the medical records of young patients receiving gender affirming care at a New York hospital.

Google accidentally exposed details of unfixed Chromium flaw

Google has accidentally leaked details about an unfixed issue in Chromium that keeps JavaScript running in the background ...
GitHub

Gamepad Plugin for eov

This repository contains the Gamepad plugin for eov, the lightweight whole-slide image viewer. The plugin adds controller-driven viewport navigation, workspace actions, and a dedicated settings window ...

OpenAI’s Codex just moved into Chrome, where the useful work and the risks live

OpenAI’s Codex Chrome extension pushes the coding agent into signed-in browser work, making it more useful for real tasks while raising new questions about access, approvals, and agentic AI risk.