Search: security vulnerabilities

Linus Torvalds says flood of duplicate AI-generated vulnerability reports have made Linux security mailing list 'almost entirely unmanageable' — private list 'a waste of time for everybody involved' in switch to new public system

Linus Torvalds declared the Linux kernel's private security mailing list "almost entirely unmanageable" on Sunday in his weekly post to the Linux Kernel Mailing List LKML , blaming a flood of duplicate vulnerability reports generated by researchers running the same AI tools against the same code. …

May 18, 2026 · Luke James

Standard 90-day vulnerability disclosure policy is likely dead thanks to AI, expert warns that AI can weaponize patches in 30 minutes — LLM-assisted bug-hunting ushers in a new cyberworld order

In case you haven't been in the cybersecurity news lately, here's a quick summary: discoveries and exploits of high-profile software vulnerabilities are becoming faster than ever, in part due to AI-assisted code scanning tools. …

May 12, 2026 · Bruno Ferreira

CISA flags actively exploited ‘Copy Fail’ Linux kernel flaw enabling root takeover across major distros — unpatched systems may remain vulnerable to attack

… Cybersecurity and Infrastructure Security Agency CISA added a newly disclosed Linux vulnerability, dubbed “Copy Fail,” to its Known Exploited Vulnerabilities catalog on May 1st, warning that the flaw, tracked as CVE-2026-31431, is already being used in active attacks and urging rapid patching acros… …

May 4, 2026 · Etiido Uko

First Apple M5 memory exploit discovered using Anthropic AI, gives root access on MacOS — Claude Mythos helps security researchers bypass Memory Integrity Enforcement

… MIE is enforced at the hardware level in a hypervisor-like configuration and effectively protects against most common classes of security exploits, namely, but not only, buffer overflows and use-after-free vulnerabilities. …

May 16, 2026 · Bruno Ferreira

Researchers attack AMD's Infinity Fabric to bypass hardware security protections with 'Fabricked' — flaw lets malicious cloud hosts silently read confidential VM memory and forge attestation reports

… AMD SEV-SNP addresses this by creating hardware-isolated Confidential Virtual Machines, where memory is encrypted and access-controlled by a dedicated on-chip security processor called the PSP. …

May 19, 2026 · Etiido Uko

Trump administration considers mandatory pre-release vetting of AI models — Anthropic's Mythos cited as catalyst for policy reversal

… Article continues below The new approach sounds a lot like the UK's AI Security Institute model, where government bodies evaluate frontier models against safety benchmarks before and after deployment. …

May 4, 2026 · Luke James

White House reportedly considers mandatory government vetting of AI models before release — executive order under discussion

… Mythos, which Anthropic revealed last month in what felt like a marketing campaign, is what Anthropic has framed as a potential cyber-superweapon, capable of finding thousands of critical software vulnerabilities in seconds, and, as such, poses “unprecedented cybersecurity risks.” For these reasons… …

May 7, 2026 · Luke James

Microsoft BitLocker-protected drives can now be opened with just some files on a USB stick — YellowKey zero-day exploit demonstrates an apparent backdoor

There's nothing more dangerous than a bored engineer with a screwdriver, and hell hath no fury like a security researcher scorned. …

May 13, 2026 · Bruno Ferreira

Josef Prusa says Bambu Lab allegedly violates AGPL license with an un-auditable network 'black box' — warns Chinese 3D printing software poses massive security risks

… Prusa recently took to X to explain how the competition has been violating his company’s slicer AGPL-3.0 license since day one, and how that violation is not just an open source issue, but a security issue. …

May 17, 2026 · Denise Bertacchi

OpenClaw creator burned through $1.3 million in OpenAI API tokens in a single month — bill covered 603 billion tokens across 7.6 million requests and 100 coding agents

… The latest CodexBar update renders API costs wayyyy nicer. https://t.co/lJ4dxNHwzG pic.twitter.com/fCkWutJGzT May 15, 2026 Steinberger's fleet of Codex agents autonomously reviews pull requests, scans commits for security vulnerabilities, deduplicates GitHub issues, and writes fixes. …

May 17, 2026 · Luke James

Followed topics