OpenAI Breach: AI Malware Hits Employee Devices

OpenAI has confirmed a security breach linked to the Shai-Hulud malware campaign. Hackers infected two employee devices and accessed a small number of internal code storage systems. The company states there is no evidence that customer data, core systems, or company technology were affected. This incident follows similar reports involving Microsoft and Mistral AI, tied to the same broader malware campaign. OpenAI says the malware accessed a limited subset of internal source code repositories. As a precaution, the company is rotating code-signing certificates. This means macOS users will need to update their OpenAI applications before June 12th. Older versions may stop working after this date. OpenAI highlights that these attacks show a growing risk in the tech industry, as attackers increasingly target shared software dependencies and development tools.