New tools, products, platforms, funding rounds, and company developments in AI security.
This article discusses the competitive race between Elon Musk's SpaceX and Sam Altman's OpenAI as both companies move toward initial public offerings (IPOs, which is when a private company sells shares to the public for the first time). The piece highlights how a small group of tech leaders is gaining increasing influence over the future direction of artificial intelligence development.
The TrapDoor malware campaign compromised over 34 malicious packages across npm, PyPI, and Crates.io (popular code repositories where developers download libraries) to steal developer secrets like AWS credentials, GitHub tokens, and SSH keys (authentication credentials for secure systems). The campaign is particularly dangerous because it targets entire developer workflows, including AI coding assistants, and uses normal software development processes as cover, making it harder to detect and potentially giving attackers access to CI/CD pipelines (automated systems that build and deploy software) and cloud infrastructure.
Uber has spent its entire annual AI budget in just four months of 2026 and is questioning whether the spending is worthwhile, as the company struggles to see a clear connection between rising token consumption (the computational cost of running AI models like Claude Code) and actual improvements in features delivered to customers. Uber's president says it's difficult to prove that increased AI spending is directly producing more useful features for consumers.
Attackers are now exploiting software vulnerabilities (unpatched flaws in code) as their primary way to break into organizations, surpassing stolen credentials as the most common entry point. This shift is happening because companies are struggling to patch vulnerabilities quickly enough — in 2025, only 26% of critical vulnerabilities were fully fixed, with the median time to patch rising to 43 days, while the volume of critical vulnerabilities grew by 50% year-over-year.
OpenAI has partnered with two major Brazilian news organizations, Folha de S.Paulo and Grupo UOL, to integrate their journalism into ChatGPT. Starting immediately, ChatGPT's 900 million weekly active users can access summaries and articles from these sources with attribution and links back to the original reporting. This partnership is part of OpenAI's broader effort to work with news publishers globally and bring trusted journalism into AI-powered experiences.
UK companies are misrepresenting themselves as AI specialists by exaggerating or relabeling their ordinary automation systems as artificial intelligence to gain attention and investment. PR executives report that bosses across low-tech industries are pressuring them to pitch their businesses as AI companies, even when they only use basic automation rather than generative AI (AI systems that can create text, images, or other content).
At the Cannes Film Festival, director Darren Aronofsky defended the use of generative AI (software that creates new content like images or text from patterns in training data) in filmmaking through his studio Primordial Soup, while facing criticism from peers like Guillermo del Toro who oppose the technology. The article highlights that AI has become a deeply divisive issue within the film industry, with significant disagreement over whether filmmakers should adopt these tools.
Anthropic announced that Claude now integrates with 28 enterprise security and compliance platforms, allowing organizations to monitor and govern Claude's use alongside other workplace software. The integration works through the Claude Compliance API, which gives security teams access to conversation content and activity logs from Claude Enterprise, enabling them to apply their existing monitoring policies to Claude.
India's CERT-In has issued new security guidelines requiring organizations to patch critical vulnerabilities in internet-exposed systems within 12 hours because attackers are increasingly using AI and LLMs (large language models, which are AI systems trained on large amounts of text) to automate the discovery and exploitation of security weaknesses faster than ever before. The guidelines warn that AI-assisted attacks can compress the time needed for attackers to find and weaponize vulnerabilities, and recommend defensive measures like continuous vulnerability monitoring, Zero Trust security (verifying access at every step), layered security controls, and secure-by-design practices.
Fix: CERT-In recommends organizations implement the following: "Assume breach and prepare for rapid detection, containment, and recovery from compromise scenarios. Adopt a Zero Trust approach by enforcing continuous verification and least-privilege access. Implement a defense-in-depth strategy with layered controls across infrastructure to eliminate single points of failure and minimize the overall impact of a successful breach. Monitor and reduce exposure to security vulnerabilities. Embed a secure-by-design paradigm into systems, applications, and AI workflows. Maintain operational continuity during cyber incidents and disruption scenarios. Safeguard sensitive and operationally critical data throughout its lifecycle. Reduce software supply chain risks arising from third-party software, AI models, and dependencies through SBOM (software bill of materials), provenance validation, and assessments. Test security effectiveness against evolving threats through red teaming, vulnerability assessments, penetration testing, and independent audits." Organizations should also adopt "continuous, risk-based vulnerability and patch management practices" and prioritize patching known exploited vulnerabilities affecting internet-facing and critical systems.
The Hacker NewsAI systems change continuously between deployments (such as when retrieval indexes update overnight or new tools are added), which breaks the traditional governance model where compliance is checked after development is complete. Most organizations still treat governance as a separate review layer rather than embedding it into the actual deployment process, leaving companies blind to changes most likely to affect the system. Chinese AI companies instead treat governance as release infrastructure, embedding compliance checkpoints directly into the deployment pipeline so that no product launches without passing these checks.
Fix: Embed governance checkpoints directly into the deployment pipeline as release infrastructure rather than treating it as a separate review layer. According to the source, this means making governance 'part of the product' by including compliance checks that must be cleared before any product launch occurs, similar to how Chinese AI companies structure their deployment processes. Specific practices mentioned include maintaining current, pipeline-generated records of components like retrieval indexes, establishing output-monitoring thresholds that are owned by responsible parties, and tying model evaluation results to enforceable release gates.
CSO OnlineAnthropic's Project Glasswing, which uses Claude Mythos Preview (an AI model trained to find software bugs), has discovered approximately 10,000 critical or high-severity vulnerabilities across over 1,000 open-source projects and 50 partner organizations. While the AI successfully identified thousands of real vulnerabilities, maintainers are overwhelmed by the flood of bug reports and lack the capacity to patch them quickly, creating a major cybersecurity challenge where finding bugs is now much easier than fixing them.
Anthropic is preparing to publicly release its Mythos model, an advanced AI designed for code analysis that can automatically develop professional-level cyberattacks but also help find and fix software bugs before they're exploited. The company initially delayed public release due to security concerns, but has since developed a guardrail system (safety restrictions built into the model) and is now testing Mythos in Claude Code and Claude Security. Anthropic is also running a project called Glasswing, which partners with companies to use Mythos Preview to find vulnerabilities in critical software, having uncovered 10,000 high or critical-severity vulnerabilities in its first month.
Fix: Anthropic decided against public rollout of the Mythos model until it prepared a powerful guardrail system (safety restrictions to prevent misuse). The company is also collaborating with other companies through the Glasswing project to identify and secure potential AI-driven exploits before widespread release.
BleepingComputerPope Leo XIV released a papal encyclical (an official open letter from the Catholic Church) called 'Magnifica Humanitas' warning about risks from AI and rapid technological advancement, including AI-powered warfare and job displacement. The document emphasizes that current legal and ethical protections are inadequate to safeguard human dignity as AI adoption accelerates.
Researchers argue that enterprises cannot secure AI agents by making the underlying models more robust. Instead, they must enforce security controls at the system level, treating AI models as fundamentally untrusted components, similar to how operating systems treat processes. The paper identifies five security principles from traditional systems security (least privilege, tamper resistance, complete mediation, secure information flow, and accounting for human error) that should be applied to AI agents, and notes that all eleven real-world attacks analyzed violated the secure information flow principle.
CVE Lite CLI is an open-source tool that scans JavaScript and TypeScript project dependencies for vulnerabilities by analyzing lockfiles (files that track which packages a project uses) locally while developers are coding, rather than waiting for security checks to fail later in the CI pipeline (automated testing system). The tool provides detailed remediation guidance, distinguishing between direct dependencies (packages you explicitly use) and transitive dependencies (packages that your dependencies use), and recommending specific upgrade paths. According to the creator, this local-first approach is increasingly important because AI coding assistants allow developers to add packages quickly, potentially without proper security review.
Fix: CVE Lite CLI scans npm, pnpm, and Yarn lockfiles using OSV vulnerability data and can be configured for JSON, SARIF, or HTML outputs and integrated into CI workflows as a GitHub Action. The tool analyzes lockfiles to identify which vulnerabilities are direct versus transitive, validates upgrade targets, and recommends actionable fix paths while developers are still writing code.
CSO OnlineNetwork Detection and Response (NDR, a security tool that monitors network traffic for threats) has traditionally been criticized for generating too many alerts, but newer NDR systems using agentic AI (AI that autonomously performs tasks like data analysis and alert prioritization) are reducing false positives by correlating multiple data points and automatically triaging alerts for analysts. This allows security teams to focus on genuine threats rather than sorting through overwhelming amounts of data.
Fix: The source discusses operational best practices but does not explicitly describe a specific fix or mitigation. It mentions that NDR systems should be properly deployed through baselining (allowing the system to learn normal network behavior), staying tuned (ongoing configuration), and SOC integration, but does not present these as solutions to a problem—rather as necessary deployment steps. N/A -- no mitigation discussed in source.
The Hacker NewsAnthropic's Claude Mythos model, an AI system designed to find security vulnerabilities (bugs that attackers could exploit), discovered over 23,000 potential weaknesses across more than 1,000 open source software projects, with 1,726 confirmed vulnerabilities including over 1,000 rated as high or critical severity. So far, 75 of these serious issues have been patched by software vendors, and Anthropic expects this number to grow significantly as vendors continue their 90-day review period. The company has also released Claude Security, a tool to help developers scan their own code for security issues.
Fix: Anthropic has unveiled Claude Security, a codebase scanner designed to help developers find security issues in their applications. Additionally, Anthropic is working to add safeguards to prevent misuse of Mythos and has limited its access through Project Glasswing (a program that gives about 50 organizations controlled access to the model) while developing stronger protections before making it more widely available.
SecurityWeekAI models are becoming better at automatically finding software vulnerabilities (weaknesses in code) and creating exploits (tools to attack them), which is flooding bug bounty programs (programs that reward researchers for reporting bugs) with submissions. This surge is changing how companies pay for bug discoveries and forcing faster security responses, potentially shortening the traditional 90-day responsible disclosure window (the agreed-upon time between finding a bug and publicly revealing it) where companies typically release patches (fixes).
Scotland's policy encouraging "green datacentres" (facilities designed to minimize environmental impact) was created in 2022 before AI tools like ChatGPT became widespread, and a Scottish charity warns it may not account for the significant carbon emissions that AI systems actually produce. The policy is meant to attract AI investment to Scotland as part of the country's economic development strategy, but it appears outdated regarding the true environmental costs of running AI.
Early AI chatbots were vulnerable to jailbreaks, which are attacks where users trick the AI into ignoring its safety guidelines by simply asking it to do so, requiring no technical expertise or coding knowledge. Hackers are now becoming more sophisticated in exploiting chatbot personalities to bypass safety measures that were built into these expensive AI systems.