The Next Web

A popular OpenAI Codex tool with 29,000 weekly downloads has been quietly stealing developer tokens for a month

The codexui-android npm package silently exfiltrated OpenAI Codex auth tokens to an attacker server for a month, affecting 29,000 weekly downloads.
Redmondmag.com

Microsoft 365 Android Coding Error Put Account Tokens at Risk

A coding error in several Microsoft 365 Android apps could have allowed a malicious app on the same device to silently obtain account tokens and act as the signed-in user, according to new research ...
The Independent

Arsenal trophy parade LIVE: Gunners celebrate title triumph as Declan Rice loses voice after defeat in Champions League final

Thousands of Arsenal fans line London streets for trophy parade Thousands of Arsenal fans lined the streets of north London as the club celebrated their Premier League title triumph with a trophy ...