Caught the Codex Credit Drain Culprit, OpenAI Fixes Multiple Vulnerabilities and Resets Compensation for the Third Time

According to Dynamic Insight monitoring, the root cause of the abnormal expenditure of OpenAI's AI programming agent Codex has been officially identified. Chief Producr Officer Tibo Sottiaux announced that the team has fully deployed a fix patch. In addition to an upcoming full quota reset, all users will also receive a one-time 24-hour emergency reset card.

The excessive consumption was not due to a single vulnerability, but rather a combination of multiple minor backend issues and display misreports. Operationally, the system experienced token depletion due to excessive automatic reviews, an unexpectedly high number of sub-agent tasks triggered, and a backend recommendation feature that retried and ran repeatedly after failures, exponentially consuming tokens. On the display side, automatic reviews were erroneously categorized as GPT-5.4 consumption, and failed or rate-limited requests were incorrectly shown as quota consumption on the frontend graph, causing a widespread panic among users.

Currently, the official team has synchronized the deployment of a hotfix in the billing backend, desktop app, and CLI terminal. In the future, only successful interaction requests will be recorded in the Turn usage chart. While the erroneous data in the historical chart cannot be altered, the updated actual token consumption will be significantly reduced.