New tools, products, platforms, funding rounds, and company developments in AI security.
AI is making phishing attacks faster and harder to stop, with attackers using AI to quickly create and rotate phishing infrastructure (fake websites designed to steal login information) across multiple channels like email, social media, and search ads, while employees simultaneously adopt unvetted AI tools that expose sensitive data. Traditional security defenses that rely on blocklists and IOC feeds (indicators of compromise, like flagged domain names and IP addresses) are becoming ineffective because phishing pages now appear and disappear in hours, making them essentially zero-day attacks (previously unseen threats) that blocklists cannot catch in time. The article argues that browsers are now the critical security battleground where both attacker delivery and account compromise occur.
Gemini Spark is Google's new agentic AI (an AI system that can take independent actions to complete tasks) that goes beyond typical chatbots in handling complex requests like trip planning. Unlike previous AI tools that only handle generic travel suggestions, Spark appears to deliver more detailed and personalized results by actively searching multiple sources and creating comprehensive itineraries.
Over 30 Red Hat npm packages (pre-built code libraries) were infected with malware called Miasma, which automatically runs during package installation to steal developer credentials, authentication tokens, and cloud access information. This is a supply chain attack (an attack targeting software dependencies that many organizations trust) using a self-propagating worm based on the Shai-Hulud malware family. The malware was designed to spread further by stealing publishing credentials that could give attackers access to additional repositories and developer accounts.
This article is a business news roundup covering multiple topics including geopolitical negotiations, stock market movements, and corporate announcements. The only AI-related item is that Anthropic, an AI startup, has confidentially filed paperwork with regulators to prepare for going public (an IPO, or initial public offering, where a private company sells shares to the public), ahead of its rival OpenAI which is also preparing a similar filing.
Travelers Insurance deployed an AI Claim Assistant powered by OpenAI's Realtime API (a system that lets AI have natural voice conversations in real time) to help customers file auto insurance claims after accidents. The assistant guides customers through the claims process 24/7 without wait times, and 85-90% of customers now complete their claims entirely through the AI, freeing human staff to handle more complex cases.
Attackers published a malicious npm package (a software library distribution platform) called codexui-android that appeared to be a legitimate tool for OpenAI Codex users but secretly stole authentication tokens and sent them to an external server. The attack exploited a supply chain gap where malicious code was hidden in the distributed package but not visible in the public source code repository, allowing the package to reach about 27,000 weekly downloads before detection. Security experts warn this reflects a broader vulnerability in AI software security, where developer tokens provide persistent access to accounts and are increasingly attractive targets as AI tools become widespread.
This article describes how small business owners can use AI tools, like Notion AI and Rain, to automate routine administrative tasks such as note-taking, scheduling, invoicing, and inventory management. For example, a tutor uses Notion AI to summarize client meetings and organize teaching materials, while a craft shop uses Rain to generate product descriptions and pricing, reducing listing time by 60 to 80 percent. The article emphasizes that AI works best for repetitive, less creative tasks, though business owners should carefully evaluate costs and whether the tool integrates well with their existing workflow before adopting it.
Major tech companies like Google and Microsoft are competing heavily in the AI coding assistant market, where Anthropic's Claude Code has taken an early lead. The market is projected to grow from $9.3 billion this year to roughly $30 billion by 2031, making it critical for these companies to compete not just for revenue, but also to get developers using their cloud services and training data to improve their AI models.
Anthropic is allowing the European Union's security agency (ENISA, the European Network and Information Security Agency) to access Mythos AI, a tool for testing AI security vulnerabilities. This partnership comes from cooperation between the European Commission and Anthropic as part of Project Glasswing.
Google has released Gemini Spark, an AI agent (a program that can independently complete multi-step tasks) that can work on tasks in the background on your behalf. While the agent performs well in demonstrations, the article raises concerns about its financial cost and potential privacy risks, questioning whether these tradeoffs are worthwhile.
Oracle released its first monthly Critical Security Patch Update (CSPU, a new faster patch cycle for urgent fixes that can't wait for quarterly updates) addressing 35 vulnerabilities, including 11 rated critical and several with publicly available exploit code. The most dangerous flaw is CVE-2026-46840 with a perfect CVSS score (a 0-10 severity rating) of 10, which allows unauthenticated attackers to take over Oracle REST Data Services (a gateway that exposes databases through APIs) via HTTPS.
OpenAI has published a statement on its AI policy approach, emphasizing that decisions about governing and deploying AI should involve governments, researchers, workers, civil society, and the public rather than any single company. The company states it has not created employee-funded PACs (political action committees, groups that collect money to influence elections), made donations to super PACs, or funded political candidates, though employees are free to engage in politics personally, and OpenAI commits to transparency if this approach changes.
Anthropic is expanding Project Glasswing, a program that uses Claude Mythos (an AI tool for finding security flaws) to help organizations scan their code for vulnerabilities. The initiative is adding roughly 150 new partner organizations from over 15 countries in critical sectors like power, water, and healthcare, after the initial 50 partners identified thousands of vulnerabilities using Mythos.
Fix: Anthropic says Mythos can help with both verification and patching of vulnerabilities. The company is also working with others to 'substantially scale up the reviewing and patching of vulnerabilities in open-source software' and is sharing 'ideas and best practices for disclosing vulnerabilities to open-source maintainers, with the intent of making these reports easier to triage and to act upon.'
SecurityWeekThis article covers various economic news topics, including Anthropic's confidential filing for an initial public offering (IPO, a process where a private company becomes publicly traded by selling shares to the public) and a report from the European Central Bank showing that gold has become the world's largest reserve asset for countries, surpassing US government bonds. The shift reflects geopolitical tensions driving central bank demand for gold, though some of the change is due to gold's price increasing significantly in recent years.
Healthcare providers are increasingly adopting agentic AI (AI systems that can make autonomous decisions and handle complex tasks without human intervention for each step) to automate administrative work and patient scheduling, with over two-thirds of providers already using it. Unlike earlier digital tools that added burden, agentic AI can handle nuanced scenarios by retrieving information from expert sources and iterating over time, freeing clinicians to focus on patient care. At Hospital for Special Surgery, AI agents reduced insurance claim processing from weeks to automated monthly handling of 1,100 claims, and now manage patient scheduling and triage 24/7 through conversational AI.
Fix: For high-stakes AI decisions, the source explicitly describes safeguards at HSS: 'Sensitive, complex, or uncertain scenarios are escalated to human specialists. Every decision made by the AI agent is auditable and human staff can step in at any point.' The source also notes that 'providers to ensure they have these sorts of guardrails embedded into systems' and mentions HSS uses 'an AI subcommittee' to filter all technology decisions. Additionally, 'Patient data is kept secure and the system is trained on all HSS protocols, policies, and care pathways.'
MIT Technology ReviewFix: A cybersecurity researcher stated that 'enterprises should verify both the provenance of software packages and the consistency between published artifacts and their public source code.' Additionally, organizations should apply 'least-privilege and behavioral monitoring disciplines to AI tools' the same way they do for human user accounts, and maintain 'a complete inventory of what their AI tools can access, what credentials they inherit, and what external services they interact with.'
CSO OnlineThis text discusses how AI can benefit young people through personalized learning and skill development, but emphasizes that companies must build products with safety safeguards by default rather than relying on parents or students to manage risks alone. OpenAI and other organizations are proposing an international youth safety institute to coordinate ongoing research, standards, and guidance across governments, industry, and civil society to keep AI safe and age-appropriate for young users.
Fix: The source proposes establishing either a new international institute or giving an existing national AI institute a global mandate to share research and guidance. It recommends that companies implement two key practices: (1) use 'effective, privacy-preserving age estimation' to identify minors and apply age-appropriate protections by default, and (2) complete 'annual youth safety risk assessments' and implement safeguards based on identified risks, considering developmental stages and empirical evidence from actual use.
OpenAI BlogFlorida filed a lawsuit against OpenAI and CEO Sam Altman, claiming the company marketed ChatGPT to the public while ignoring safety warnings and concealing serious risks, especially to children. The state alleges OpenAI allowed a dangerous product to reach millions of users. This is the first state-level lawsuit against the AI company in the US.
Florida has filed the first state lawsuit against OpenAI, claiming that ChatGPT endangers children, aids mass shooters, and encourages suicide in pursuit of profit. The lawsuit cites specific cases where ChatGPT allegedly provided harmful information, such as questions about disposing of human bodies. OpenAI responded by stating it has implemented industry-leading safety protections, including age detection tools and parental monitoring features.
Fix: Oracle stated that the CSPU "provides targeted, high-priority security fixes in a smaller, more focused format, making them easier to apply with minimal disruption." Oracle will release CSPUs on the third Tuesday of each month, with dates scheduled for June 16, July 21, August 18, and September 15. Oracle cloud customers are patched automatically.
CSO OnlineFlorida's Attorney General filed a lawsuit against OpenAI and CEO Sam Altman, claiming the company knowingly released an unsafe product (ChatGPT, a chatbot that generates human-like text responses) that has contributed to mass shootings, suicides, and addiction in minors. The state is seeking to hold Altman personally liable and force OpenAI to comply with Florida consumer protection laws, with the Attorney General expecting other states to follow.
Two AI tools designed to find security weaknesses in digital systems, Anthropic's Claude Mythos and OpenAI's GPT-5.5 Cyber, have raised concerns among UK financial regulators about potentially undermining banking security. Anthropic has restricted access to Mythos for UK banks, while OpenAI has now offered its competing tool to nine major UK banks including Lloyds, HSBC, and Nationwide. Both companies are limiting access to these powerful security-testing tools, with Anthropic claiming their model is more capable and therefore requires more caution, while OpenAI argues the tools should be available to 'the right people' who maintain order rather than those seeking to cause disruption.
Fix: Anthropic states it is 'urgently working to expand access to Mythos,' though no specific timeline or conditions for that expanded access are detailed in the source text.
BBC Technology