Account Takeover And CredentialsAccount Security Issue

OpenAI Codex branch-name command injection stealing GitHub tokens

March 30, 2026Kinnaird McQuade, The Hacker News, Hackread.com

Kinnaird McQuade and The Hacker News describe a Codex flaw where malicious branch names could trigger command injection and exfiltrate GitHub tokens, enabling lateral movement and repo read/write access.

Open in PulseSee the full expert discussion →

QUOTES

We found a critical vulnerability in @OpenAI Codex affecting all Codex users, allowing exfil of a victim’s GitHub tokens to our C2 server.

This granted lateral movement and R/W access to a victim’s entire code base 😈

🔸 Another enabled GitHub token theft via Codex injection

OpenAI Codex vulnerability allowed attackers to steal GitHub tokens via malicious branch names using a hidden Unicode command injection flaw.

The latest from our team, command injection in OpenAI Codex via Github branch names.

VOICES

Kinnaird McQuade

The Hacker News

Hackread.com

Marc Maiffret

Decipher

Sam Stepanyan

The Cyber Security Hub™

SecurityWeek

RELATED TERMS

githubtoken theftcommand injectionlateral movementgithublateral movement

OTHER FINDINGS IN ACCOUNT TAKEOVER AND CREDENTIALS

Exposed API keys harvested via GitHub dorking and OSINT workflows Claude access request queue-jump via workplace influence Email-based OSINT lookups for discovering linked social accounts

AMYGDALA PULSE

See what experts are saying right now

This finding is one of many signals tracked across Cyber Security. The live feed updates every few hours with new expert voices, debates, and emerging ideas.

Open Cyber Security Pulse Browse all topics

← Back to Cyber Security