Search

theverge.com › news › 920295

GitHub rushed to fix a critical vulnerability in less than six hours

… It’s not clear exactly what AI model helped find the issue, though. “Notably, this is one of the first critical vulnerabilities discovered in closed-source binaries using AI, highlighting a shift in how these flaws are identified,” says Sagi Tzadik, a security researcher at Wiz. …

Apr 29, 2026 · Tom Warren

Top stories

theverge.com

Nvidia says some of its old drivers have “high severity” security vulnerabilities.

1w ago

theverge.com

Cybersecurity

1w ago

theverge.com › ai-artificial-intelligence › 921198

Anthropic rolls out its codebase-scanning security tool for businesses.

Claude Security uses the Opus 4.7 model to scan a business’s codebase for vulnerabilities and issue a fix. …

Apr 30, 2026 · Emma Roth

theverge.com › tech › 928007

Google stopped a zero-day hack that it says was developed with AI

… The report also mentions AI as a target for attackers, saying “GTIG has observed adversaries increasingly target the integrated components that grant AI systems their utility, such as autonomous skills and third-party data connectors.” Google’s report also details how hackers are using “persona-dri… …

May 11, 2026 · Stevie Bonifield

theverge.com › ai-artificial-intelligence › 915660

Attack of the killer script kiddies

… The Cloud Security Alliance released an expedited strategy briefing on developing a “Mythos-ready” security plan detailing many of these concepts. The report also emphasized the need to not only patch vulnerabilities but also to identify which ones to prioritize. …

Apr 28, 2026 · Yael Grauer

theverge.com › tech › 922243

Severe Linux Copy Fail security flaw uncovered using AI scanning help

Nearly every Linux distribution released since 2017 is currently vulnerable to a security bug called “Copy Fail” that allows any user to give themselves administrator privileges. …

May 1, 2026 · Stevie Bonifield

theverge.com › tech › 926487

A million baby monitors and security cameras were easily viewable by hackers

… That way, it would have looked like Meari discovered the vulnerabilities before he ever reached out. …

May 11, 2026 · Sean Hollister

theverge.com › policy › 916758

Anthropic’s Mythos rollout has missed America’s cybersecurity agency

… On Tuesday, Axios reported that the Cybersecurity and Infrastructure Security Agency CISA didn’t have access to Mythos Preview, which Anthropic has touted as a powerful tool for finding and patching security vulnerabilities. …

Apr 22, 2026 · Lauren Feiner

theverge.com › ai-artificial-intelligence › 928342

OpenAI just released its answer to Claude Mythos

… Daybreak uses the Codex Security AI agent that launched in March to create a threat model based on an organization’s code and focus on possible attack paths, validate likely vulnerabilities, and then automate the detection of the higher risk ones. …

May 11, 2026 · Stevie Bonifield

theverge.com › ai-artificial-intelligence › 916500 › …

Mythos v. Firefox.

… Link: The zero-days are numbered | The Mozilla Blog | https://blog.mozilla.org/en/firefox/ai-security-zero-day-vulnerabilities/ | Mozilla

Apr 22, 2026 · Robert Hart

theverge.com › tech › 926989

Here is Yarbo’s promise to fix the robot mower that ran me over

… Security Reporting To improve security reporting in the future, we are launching a dedicated security response channel and security contact process for vulnerability reports and responsible disclosure: security@yarbo.com The public will also be able to find our security contact information on the Y… …

May 8, 2026 · Sean Hollister