Tech Giant OpenAI issued a warning to its macOS users on April 10, 2026, after reporting a recent security issue linked to third-party Axios, which was part of a wider supply chain attack. The Sam Altman-led firm said it has found no signs that users’ data was accessed or that the company’s systems were hacked.
Here’s What Happened
OpenAI tweeted, “We recently identified a security issue involving the third-party developer library Axios that was part of a broader industry incident. We found no evidence that OpenAI user data was accessed, that our systems were compromised, or that our software was altered.”
The American firm added that, out of caution, it is taking steps to protect the process that certifies the company’s macOS applications as legitimate OpenAI apps.
A malicious version of Axious was briefly used during OpenAI’s macOS app-signing process on March 31, 2026. This happened through a GitHub Actions workflow that had downloaded the compromised package. Apparently, this workflow could access certificates that are needed to verify that OpenAI’s apps are legitimate. These certificates can help you to install the trusted software. Notably, the company said that it believes the certificate was not likely stolen; however, it is still treating the issue as a potential threat for precautionary measures.
macOS Users Told To Update Apps
OpenAI is revoking the current certificate, and it is now issuing a new one. The company has informed that all macOS users must update their ChatGPT and other OpenAI apps to the latest versions. This will help them to avoid the risk of fake apps acting as official ones. Users can update their apps through the official company links, which are also shared in OpenAI’s latest social media posts. OpenAI claims that the problem was tracked to a misconfigured GitHub Actions workflow. The configuration has now been corrected, reported OpenAI.
Related News |
Sam Altman's OpenAI Faces Investigation; ChatGPT Accused Of Risk To Kids
OpenAI said, “We are updating our security certifications, which will require all macOS users to update their OpenAI apps to the latest versions. This helps prevent any risk—however unlikely—of someone attempting to distribute a fake app that appears to be from OpenAI. You can update safely through an in-app update.”
