“AI developer tooling is changing into a high-value goal exactly as a result of the tokens are highly effective and long-lived,” Aikido stated. “A stolen Codex refresh_token goes past entry to a chat interface — it’s persistent, silent entry to no matter that account can do.”
Aikido stated the incident mirrored a broader sample during which attackers construct credible and helpful initiatives as cowl for malicious exercise.
“The legitimacy is the assault vector,” Aikido stated. “As AI instruments proliferate and builders attain for productiveness shortcuts, count on extra of this.”
The case exposes what some safety consultants describe as a rising blind spot in software program provide chain safety, the place controls typically give attention to supply code quite than the software program artifacts in the end distributed to customers.