OpenAI Hit by North Korean Supply Chain Attack Through Popular JavaScript Library

OpenAI hit by supply chain attack on Axios library, linked to North Korean hackers. App-signing certificates at risk, revocation by 2026.

By Content Team

Apr 13, 2026

ON THIS PAGE

Share

---

ON THIS PAGE

Want more insights like this?

Subscribe to our newsletter to get the latest software protection strategies delivered to your inbox.

By submitting your email, you consent to Codekeeper contacting you and agree to our privacy policy.

OpenAI confirmed Friday it was affected by a supply chain attack on Axios, a popular JavaScript library with over 100 million weekly downloads. North Korean hackers compromised an Axios maintainer's account in late March and published malicious packages that were live for just hours before detection.

The attack hit OpenAI's macOS app-signing process, potentially exposing certificates used to sign ChatGPT Desktop and other applications. While OpenAI believes the certificate wasn't compromised, they're revoking it as a precaution and will fully revoke it by May 2026.

Cybersecurity firms found evidence of compromise on 135 machines, with the malicious code executing in 3% of affected environments. The attack is linked to UNC1069, a North Korean group known for cryptocurrency theft.

Source: Security Week

Share this article

Have questions about protecting your software?

Our escrow experts are standing by to help.

Book a free demo

YOU MAY ALSO LIKE

M&S Technology Chief Quits Less Than a Year After Cyber Attack

Jan 22, 2026

Tech-Savvy Zillennial Falls for Banking Scam Despite Cybersecurity Training

Feb 2, 2026

New WebRTC Skimmer Bypasses Security to Steal Credit Card Data

Mar 26, 2026

Microsoft Patches Entra Role Flaw That Let Hackers Hijack Service Principals

Apr 26, 2026