Mac users with older versions of ChatGPT or Codex installed are currently receiving alarming messages from macOS. The app cannot be opened as it has been identified as malware and is automatically moved to the trash. This action is taken to remove the perceived threat without causing harm to the Mac, as emphasized by the manufacturer.
The malware warning is not limited to ChatGPT; it also affects Codex and the Atlas browser. Users report that the warnings appear even without their intervention, such as immediately after restarting the system. However, these messages are only relevant for older versions of the apps; current versions continue to function properly.
The reason for the malware warning stems from a security incident at OpenAI, which necessitated the company to replace its Apple developer certificate. A supply chain attack in March led to a malicious version of Axios being downloaded, compromising the integrity of the signing of the macOS apps. In response, OpenAI revoked the old certificate and alerted users to the need for updates.
Users should re-download and reinstall the apps to maintain access to the services. The download should only be done from the official OpenAI website to avoid security risks. OpenAI has worked with Apple to ensure that apps signed with the old certificate cannot be notarized again.
