OpenAI rotates certificate after Axios supply chain compromise.

OpenAI says it was among the organizations that briefly downloaded a malicious Axios package after attackers hijacked an NPM maintainer’s account in late March. A GitHub Actions workflow used for macOS app‑signing pulled the trojanized Axios version, giving it access to signing materials for several OpenAI desktop applications. The company believes the certificate was not misused but is revoking and replacing it as a precaution, with full revocation set for May 8, 2026. Huntress and Wiz found signs of compromise across multiple environments, and researchers attribute the broader Axios attack to a North Korean group known for financially motivated operations.

Read more:

https://www.securityweek.com/openai-impacted-by-north-korea-linked-axios-supply-chain-hack/