tldrdailynews.com logo
Tag

Vulnerability Discovery

All articles tagged with #vulnerability discovery

AI Flags 10,000+ Critical Flaws, Accelerating Patch Push Worldwide
cybersecurity7 days ago

AI Flags 10,000+ Critical Flaws, Accelerating Patch Push Worldwide

Anthropic’s Project Glasswing, using Claude Mythos Preview, has identified more than 10,000 high- or critical-severity software vulnerabilities since launch, including 6,202 affecting over 1,000 open-source projects; 1,726 confirmed true positives and 1,094 high/critical. The effort has yielded 97 upstream patches and 88 advisories, with examples like WolfSSL CVE-2026-5194 (CVSS 9.1). The work underscores the gap between discovery and remediation, while defenders credit the tool for preventing fraud (a partner bank blocked a $1.5M wire transfer). Anthropic also launched a Cyber Verification Program for legitimate testing; public, unrestricted access to Mythos-like models remains unlikely amid safeguards. The episode amplifies calls to shorten patch cycles and harden defenses across software supply chains.

via The Hacker News|
#anthropic#claude-mythos#cybersecurity
Frontier AI flaw-hunters warn attackers could gain broad access within months
technology17 days ago

Frontier AI flaw-hunters warn attackers could gain broad access within months

Palo Alto Networks warns that frontier AI cyber models like Mythos and GPT-5.5 can rapidly identify and chain multiple flaws, finding vulnerabilities across hundreds of products and generating working exploits in internal tests (about 70% success) even as most flaws aren’t actively exploited in the wild. False positives run around 30%, and human expertise remains essential. The firm urges a four‑pronged defense—patch quickly, reduce internet exposure, deploy real‑time detection, and integrate AI/automation into security operations—as policy makers weigh limits on powerful AI in cybersecurity.

via Axios|
#ai-exploit-writing#cybersecurity-defense#frontier-ai
Claude Opus 4.6 Spotlights 500+ Open-Source Security Flaws
technology3 months ago

Claude Opus 4.6 Spotlights 500+ Open-Source Security Flaws

Anthropic's Claude Opus 4.6 reportedly identifies over 500 high-severity vulnerabilities in major open-source libraries such as Ghostscript, OpenSC, and CGIF, demonstrating improved code-reading and debugging abilities; the company validated findings and uses the model to help prioritize and patch critical memory-corruption issues, while stressing safeguards against misuse.

via The Hacker News|
#ai-cybersecurity#claude-opus-46#ghostscript-opensc-cgif
Claude Opus 4.6 Unmasks 500 Open-Source Flaws, Redefining Cyber Defense
cybersecurity3 months ago

Claude Opus 4.6 Unmasks 500 Open-Source Flaws, Redefining Cyber Defense

Anthropic’s Claude Opus 4.6, tested in a sandbox, autonomously found over 500 previously unknown high-severity zero-day vulnerabilities in open-source libraries—ranging from crashes to memory corruption—in projects like GhostScript, OpenSC, and CGIF; it used out-of-the-box analysis and even wrote its own proof-of-concepts in some cases. Anthropic says these capabilities could greatly aid defenders, plans to broaden access to the security community, and has added safeguards to prevent abuse.

via Axios|
#ai-security#cybersecurity#open-source