All tracked items across vulnerabilities, news, research, incidents, and regulatory updates.
OpenAI discovered that a GitHub Actions workflow (automated processes that run in code repositories) used to sign its macOS apps downloaded a malicious version of the Axios library on March 31, which contained a backdoor called WAVESHAPER.V2. Although OpenAI found no evidence that user data or systems were compromised, the company is treating its signing certificate as compromised and revoking it, which will cause older versions of its macOS apps to stop receiving updates and support after May 8, 2026.
Fix: OpenAI is revoking and rotating the compromised certificate. Users must update to the following minimum versions by May 8, 2026, or their apps will be blocked by macOS security protections: ChatGPT Desktop 1.2026.071, Codex App 26.406.40811, Codex CLI 0.119.0, and Atlas 1.2026.84.2. OpenAI is also working with Apple to prevent any new software notarization (Apple's process for verifying legitimate apps) using the old certificate, so unauthorized code signed with it will be blocked by default by macOS security protections.
The Hacker NewsCloudflare and OpenAI are partnering to let enterprises deploy AI agents (software programs that can automatically perform tasks like customer service and report generation) using advanced OpenAI models like GPT-5.4 through Cloudflare's Agent Cloud platform. The integration runs on Cloudflare Workers AI (a system for running AI models at the edge, meaning closer to users for faster responses) and includes Codex (a tool for streamlining software development), which is now available in Cloudflare Sandboxes (secure virtual environments for testing).
A vulnerability (CVE-2026-6129) was found in the CowAgent component of zhayujie's chatgpt-on-wechat software up to version 2.0.4, where missing authentication (failure to verify user identity) in the Agent Mode Service allows attackers to perform unauthorized actions remotely. The exploit is publicly available and the developers have not yet responded to the initial report of the problem.
GitHub Copilot, a tool that uses AI to autocomplete code as developers write it, was one of the earliest successful AI applications, debuting in spring 2021 through a Microsoft and OpenAI partnership, long before ChatGPT became widely known. The article discusses how AI code-writing tools have become increasingly important in the tech industry.
CVE-2026-6126 is a missing authentication vulnerability in zhayujie chatgpt-on-wechat CowAgent version 2.0.4, affecting an administrative HTTP endpoint (a web-based control interface). An attacker can remotely exploit this flaw without needing valid credentials, and the exploit code has been publicly released.
Major AI companies like OpenAI are investing in policy papers, think tanks, and public engagement efforts to improve their public image as polls show growing disapproval of AI technology. OpenAI recently released a policy paper on industrial policy and opened a Washington DC office with space for non-profits and policymakers to learn about their technology, as part of a broader strategy to reshape how people perceive the AI industry.
Anthropic announced it created a powerful AI model called Mythos that it decided not to release publicly, citing cybersecurity risks as the reason. The announcement drew significant attention from government officials and politicians, though some skeptics question whether the decision was genuinely about security concerns or a publicity strategy to attract investment.
The New Yorker published an AI-generated illustration for a profile of OpenAI CEO Sam Altman, created by mixed-media artist David Szauder using generative AI (software that creates images based on text descriptions). The article discusses how AI art is being used in major publications, raising concerns among illustrators about the impact on their profession.
At the HumanX AI conference in San Francisco, Anthropic's Claude Code (an AI coding agent, a tool that generates, edits and reviews code) has become the dominant topic in the AI industry, surpassing OpenAI's influence among executives and investors. Despite a legal dispute with the Department of Defense, Anthropic continues to gain momentum, with Claude Code generating over $2.5 billion in annualized revenue since its May 2025 public launch. The company's focus on coding rather than spreading resources across multiple AI products has positioned it well to capture enterprise contracts.
The LifterLMS plugin for WordPress (a learning management system plugin) has a SQL injection vulnerability (a flaw where attackers can insert malicious database commands into normal queries) in versions up to 9.2.1 through the 'order' parameter. Authenticated attackers with Instructor-level access and above can exploit this to extract sensitive information from the database because the plugin does not properly clean user input before using it in database queries.
Microsoft Windows has a bug in its Common Log File System Driver (a program that manages log files on your computer) that allows an attacker to read memory outside the intended boundaries, potentially giving them higher-level access to your system. This vulnerability is currently being actively exploited by attackers in real-world attacks.
Fix: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CISA Known Exploited VulnerabilitiesAdobe Acrobat and Reader contain a prototype pollution vulnerability (a type of bug where an attacker can modify an object's properties to inject malicious code) that allows attackers to run arbitrary code execution (running commands they shouldn't be able to run) on affected systems. This vulnerability is currently being actively exploited by attackers in the wild, making it a serious threat.
Fix: Apply mitigations per Adobe's vendor instructions (available at https://helpx.adobe.com/security/products/acrobat/apsb26-43.html), follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CISA Known Exploited VulnerabilitiesMicrosoft Windows has a link following vulnerability (a flaw where the system unsafely follows file shortcuts, potentially allowing attackers to access restricted areas) that enables privilege escalation (gaining higher-level access than intended). This vulnerability is currently being exploited by attackers in real-world attacks.
Fix: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CISA Known Exploited VulnerabilitiesFortinet FortiClient EMS contains a SQL injection vulnerability (a flaw where attackers insert malicious database commands into input fields) that allows unauthenticated attackers to run unauthorized code through specially crafted web requests. This vulnerability is currently being exploited by real attackers in the wild.
Fix: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CISA Known Exploited VulnerabilitiesMicrosoft Exchange Server has a deserialization vulnerability (a flaw where the software unsafely processes data from untrusted sources, allowing an attacker to run malicious code) that lets an authenticated attacker (someone with login access) execute remote code execution (run commands on the server from afar). This vulnerability is currently being actively exploited by real attackers.
Fix: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable. Due date: 2026-04-27.
CISA Known Exploited VulnerabilitiesAdobe Acrobat contains a use-after-free vulnerability (a memory safety bug where software tries to access data that has already been deleted), which allows attackers to execute arbitrary code on affected systems. This vulnerability is currently being actively exploited by real attackers in the wild.
Fix: Apply mitigations per vendor instructions (see Adobe security bulletin APSB20-48), follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable. Due date: 2026-04-27.
CISA Known Exploited VulnerabilitiesMicrosoft Visual Basic for Applications (VBA, a programming language used in Microsoft Office) has a vulnerability in how it loads libraries (pre-written code) that could let attackers run malicious code on your computer remotely. This flaw is currently being exploited by attackers in the real world.
Fix: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CISA Known Exploited VulnerabilitiesThis article argues that generative AI (machine learning systems that create new content like images or text) is harming the art world by using artists' work without permission to train itself, similar to a large-scale theft. The piece describes widespread concerns about AI in 2026, including environmental damage from data centers (large facilities that store and process information), harmful effects on users' mental health, and job displacement, issues that artists had warned about earlier.
This research paper, published in June 2026, explores how to make multi-party private set union (a process where multiple parties combine datasets while keeping their individual data secret) more efficient and secure against malicious attacks. The authors propose using trusted execution environments (TEEs, hardware that protects code and data even from the computer's owner) to achieve this goal. The paper aims to balance computational efficiency with strong security guarantees when multiple parties need to collaborate while protecting sensitive information.
AI bots are creating fake music and uploading it to Spotify under the names of real musicians, including famous artists like jazz pianist Jason Moran and rapper Drake. Spotify has acknowledged the problem, removing over 75 million spammy tracks in 12 months, and says it is developing a new tool that will let artists review and approve releases before they go live on the platform.
Fix: Spotify stated it is 'working on a new tool to give artists more control over what shows up under their name' that would 'let artists review and then approve or decline releases before they go live on the platform.' The company also said that 'estate or rights holders for a deceased artist can opt into the company's new tool if they have an account.' Additionally, Spotify noted it 'employs a range of safeguards to protect artists, including systems designed to detect and prevent unauthorized content, human review, and reporting and takedown processes.'
The Guardian Technology