OpenAI confirms data theft after security breach

OpenAI has confirmed that hackers accessed and stole credentials from a limited subset of its internal source code repositories following a supply chain attack. The breach impacted two employees' devices, which were compromised through an attack on TanStack, an open-source library. While OpenAI states there's no evidence of user data compromise or alteration of its production systems, the stolen credentials included digital certificates used for signing products. As a precautionary measure, OpenAI is rotating these certificates, which may require macOS users to update their applications. The company emphasized that existing software installations remain unaffected.