OpenAI says it was indirectly affected by a recent supply chain attack that targeted widely used open source developer tools. The incident involved hackers breaking into a popular software library called TanStack and uploading multiple malicious updates within a short time window. These fake updates were designed to install malware on developer systems and spread to other connected machines.
OpenAI confirmed that two of its employees were affected because their devices interacted with the compromised software. However, the company stressed that its main systems were not breached. After investigating, OpenAI said there is no evidence that user data, production systems, or core intellectual property were accessed or altered. The only exposure involved limited internal code repositories tied to the affected employees.
Some credential data was accessed, prompting OpenAI to rotate digital security certificates used to sign its software. This means Mac users may need to update their applications as a precaution. The company emphasized that the stolen information was restricted and did not compromise existing software installations.
The attack on TanStack itself was discovered quickly, with researchers detecting the malicious updates shortly after they were published. The malware was designed to steal login details and spread across systems where the library was installed. Security experts say this type of attack is becoming more common. Instead of targeting companies directly, hackers compromise widely used open source tools so that malicious code spreads automatically through software updates.
Previous incidents have been linked to various hacking groups, including state-backed actors and independent cybercriminal networks, showing how supply chain attacks are becoming a growing threat in the software ecosystem.
