The Hacker News

OpenAI Codex Authentication Tokens Stolen in codexui-android npm Supply Chain Attack

Codex tokens were exfiltrated via a popular npm package, affecting users since v0.1.82 and enabling persistent account access ...

Microsoft 365 Android Apps Had a Token Flaw IT Teams Should Check Now

Microsoft patched a Microsoft 365 Android flaw that exposed account tokens across six apps. Here’s what IT teams should check ...
Android

Gmail will soon use QR codes for two-factor authentication

Google has long offered SMS as an option to receive two-factor authentication codes for Gmail. However, there are risks associated with it. Criminals can easily intercept SMS verification and make you ...