AI Sec Watch

Patch the Planet is a program that uses AI models paired with human security experts to find and fix vulnerabilities in widely-used open-source software (software that anyone can view and modify). Instead of just reporting problems to already-busy maintainers, the program's security engineers validate issues, help develop patches, and create reusable tools so projects can continue improving security on their own.

OpenAI is expanding Daybreak, a set of tools that uses AI models to help organizations discover and fix software vulnerabilities (security flaws in code) at scale. The initiative includes Codex Security (which automates finding and patching vulnerabilities), GPT-5.5-Cyber (a specialized AI model for cybersecurity tasks), and Patch the Planet (a program partnering with open-source projects to move from identifying vulnerabilities to fixing them).

A cybersecurity tabletop exercise (a simulated attack-and-defense training scenario) showed how attackers might target a fictional supermarket's AI-powered supply chain system by exploiting weak credentials, poor network segmentation, and employee access to cause both operational damage and reputational harm through data leaks and disinformation. The attackers used stolen developer credentials, weak multi-factor authentication (a security method requiring multiple ways to verify identity), and phishing (fraudulent messages tricking people into revealing passwords) to breach systems, then deployed tactics like flooding the company with false security alerts, spreading deepfakes (AI-generated fake videos), and spreading misinformation on social media to amplify disruption.

AI agents are becoming workers inside organizations in Southeast Asia, while regulators enforce strict data residency rules and supply chain attacks threaten businesses. Zscaler proposes extending Zero Trust Exchange (a security model that verifies every access request, even from trusted sources) and SASE (Secure Access Service Edge, a cloud-based security platform) to protect AI agents alongside users and devices. The approach includes an AI Broker that inspects AI prompts and responses, endpoint security to find risky AI tools, and access mapping to track how AI uses data across cloud and on-premise systems.

Samsung Electronics is deploying ChatGPT Enterprise and Codex (an AI tool that can write and review code) to all its employees in Korea and worldwide in its Device eXperience division, making this one of OpenAI's largest enterprise deployments. The company plans to use these tools across research, manufacturing, marketing, and other departments to improve employee productivity and problem-solving. ChatGPT Enterprise includes security features like data protection and access management so Samsung employees can use AI safely within company policies.

Cloudflare launched a feature that lets users deploy applications using Cloudflare Workers (a serverless computing platform) without creating an account by running a command that creates a temporary project lasting 60 minutes. The temporary deployment can be converted to a permanent project if the user claims it before the time expires.

vLLM (a system for running large language models) versions 0.10.2 through 0.12.x lack proper validation of sparse tensors (data structures with mostly empty values) when processing multimodal embeddings (numerical representations combining text and images). An attacker can send malicious embedding requests with invalid tensor indices to crash the system, exhaust resources, or potentially corrupt memory if the prompt-embeds feature is enabled.

vLLM versions 0.6.3 through 0.9.0 contain ReDoS (regular expression denial of service, where specially crafted text causes regex patterns to consume excessive CPU time) vulnerabilities in several components including the LoRA utility parser, phi4mini tool parser, and OpenAI chat endpoint. An attacker can send malicious input with nested or repeated structures to trigger severe CPU consumption and make the service unavailable.

A reporter at The Atlantic discovered four publicly available datasets containing millions of songs (totaling between 100,000 and 12 million tracks each) that are being used to train AI models. These datasets have been downloaded thousands of times, and companies like Google and Stability have confirmed using them in their research, raising questions about how music is used in AI training without always crediting or compensating artists.