The Hacker News

OpenAI Codex Authentication Tokens Stolen in codexui-android npm Supply Chain Attack

Codex tokens were exfiltrated via a popular npm package, affecting users since v0.1.82 and enabling persistent account access ...

Motorola Was Caught Injecting Shady Tracking Code Within The Amazon App

A recent update to Motorola phones fixed a major security flaw tied to how the devices would interact with the Amazon app.