OpenAI flags third-party data issue — all macOS users should update now

OpenAI rotated macOS code‑signing certificate after Axios supply chain breach Malicious Axios 1.14.1 pulled into app‑signing ...
SecurityWeek

OpenAI Impacted by North Korea-Linked Axios Supply Chain Hack

OpenAI is one of many organizations affected by the recent Axios supply chain attack attributed to North Korean hackers.
Cybernews

Axios patches critical vulnerability that allows attackers to steal cloud credentials

Axios, a widely used JavaScript library, is affected by a new critical vulnerability that enables attackers to chain exploits ...

Sonatype Releases Q1 2026 Open Source Malware Index: Trust Abuse Most Successful Attack Vector

Malicious open source packages reach 1.346 million as attackers abuse trusted software, release paths, and developer workflows Open Source Malware Index Q1 2026 A look at the open source malware ...

Fake Linux leader using Slack to con devs into giving up their secrets

An unknown malware slinger targeting open source software developers via Slack impersonated a real Linux Foundation official ...
Arabian Post

Axios flaw exposes cloud systems

A newly disclosed security flaw in Axios, one of the most widely used HTTP client libraries in the JavaScript ecosystem, has raised concern across software and cloud security teams after official ...
Geopolitical Monitor

Distributed Risk: Open-Source Software as Strategic Infrastructure

The 2024 XZ incident illustrates how open-source software (OSS) has become strategic infrastructure in the global economy, ...
The Tech Edvocate

Supply Chain Security at Risk: OpenAI’s macOS Certificate Revocation Amid Malicious Dependency Incident

Spread the loveIn a significant incident underscoring the vulnerabilities of software supply chains, OpenAI took decisive action by revoking its macOS signing certificate on March 31, 2026. This move ...