Claude Code, Copilot and Codex all got hacked. Every attacker went for the credential, not the model.
On March 30, BeyondTrust proved that a crafted GitHub branch name could steal Codex’s OAuth token in cleartext. OpenAI classified it Critical P1. Two days later, Anthropic’s Claude Code source code spilled onto the public npm registry, and within hours, Adversa found Claude Code silently ignored its
ORIGINAL SOURCE →via VentureBeat
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · tech
- [TECH] Medical AI is moving faster than safety checks, experts warn
- [TECH] AI surpasses physicians on clinical reasoning tasks, raising the bar for more serious testing
- [TECH] AI investing cycle reaching inflection point - Wells Fargo's Kwon
- [TECH] Apple TV has three fan-favorite sci-fi shows returning this summer
- [TECH] Porsche Celebrates Apple's 50th Anniversary With Throwback Race Car Livery
- [TECH] Google’s Gemini AI assistant is hitting the road in millions of vehicles