ADVERTISEMENT

OpenAI urges Mac app updates after supply-chain attack hits employee devices

OpenAI is urging macOS users to update ChatGPT and Codex apps after a supply-chain attack involving TanStack npm impacted two employee devices. The company says no user data or production systems were compromised.

openai-codex-fail

Image by Cybernews.

Stefanie Schappert
Stefanie Schappert Senior Journalist
May 15, 2026 Updated: 15 May 2026 2 min read
Key takeaways:

Hackers inject malware into TanStack npm packages

Mistral AI reportedly impacted in broader campaign

npm package compromise
Mini Shai-Hulud malware campaign targeted npm packages in broader supply-chain attack. Image by Cybernews.
ADVERTISEMENT
Mistral AI
Mistral AI repositories were allegedly compromised in TeamPCP npm attack. Image by Davide Bonaldo | Shutterstock

OpenAI rotates certificates, urges macOS users to update

openai-codex
OpenAI says macOS users must update ChatGPT and Codex applications by June 12th. Image by PixieMe | Shutterstock
Jurgita Lapienyte justinasv Izabele Pukenaite vilius Ernestas Naprys Gintaras Radauskas
Don't miss our latest stories on Google News
Add us as your Preferred Source on Google.

Has your password leaked?

Enter your password to check if it has leaked. Having a leaked password creates the risk of identity theft, financial damages, and worse!
35,607,543,468
Exposed Passwords
Ad
Protect your personal information from cybercriminals and get 50% off the top-rated password manager
link_title link_title

ADVERTISEMENT