New tools, products, platforms, funding rounds, and company developments in AI security.
This article covers testimony from Sam Altman in a legal case where he is accused of stealing a charity. Altman defended himself on the stand, claiming he and his team built the charity through hard work and that Elon Musk attempted to destroy it rather than him stealing it.
OpenAI CEO Sam Altman testified in court to defend himself against a lawsuit from Elon Musk, who claims Altman deceived him about OpenAI's business structure. Musk alleges that Altman broke their founding agreement by converting OpenAI from a non-profit to a for-profit company, and is seeking Altman's removal, a $134 billion redistribution, and reversal of the conversion.
Google is integrating Gemini, its AI model, deeply into Android and other devices as an 'intelligence system' that can automate tasks across multiple apps, understand what's on screen, and complete actions like booking reservations or building shopping lists. The move comes as Google competes with OpenAI and Anthropic for AI dominance, while also powering part of Apple's AI strategy, and represents a shift from traditional chatbots to agentic AI (systems that take actions on a user's behalf).
This article describes a legal dispute where OpenAI CEO Sam Altman testified that Elon Musk tried to gain control of OpenAI, the company behind ChatGPT, including suggesting the company could pass to his children when he dies. Altman and other co-founders rejected Musk's control demands because they believed that no single person should control AGI (artificial general intelligence, an AI system that could outperform humans at most tasks). Musk eventually left OpenAI in 2018 and declined to invest when the company restructured into a for-profit entity.
LLM version 0.32a2 is a command-line tool update that adds support for OpenAI's newer /v1/responses endpoint, which allows reasoning-capable models to show their thinking process across multiple steps. Users can now see summarized reasoning tokens displayed in a different color, or hide them using the -R or --hide-reasoning flags.
OpenAI CEO Sam Altman testified that Elon Musk's management style, which involved ranking researchers and cutting staff aggressively, caused significant damage to the company's culture and morale. Altman stated that Musk's approach was incompatible with running a successful research lab, highlighting a clash between different management philosophies at the AI startup.
Exaforce, a company building an agentic SOC (security operations center, where AI agents automate security tasks) platform, raised $125 million in funding to expand its technology. The platform uses autonomous AI agents called Exabots and a real-time knowledge graph (a connected database of security events and relationships) to automatically detect, investigate, and respond to security threats in cloud and SaaS environments without needing traditional SIEM (security information and event management, a tool that collects and analyzes security data) rules.
TeamPCP compromised 170 npm (Node Package Manager, a repository where JavaScript developers share code) and PyPI (Python Package Index, the equivalent for Python) packages in May 2024, including popular libraries like TanStack Router and Mistral AI's SDK. The attackers exploited weak GitHub Actions configurations (automated tools that run code during development) to inject malware called Mini Shai-Hulud that steals developer credentials like tokens (digital keys that prove identity) and API keys, and can destructively delete files if stolen credentials are revoked.
Google announced free upgrades coming to Android phones throughout the year, including a new Gemini Intelligence AI system (an AI assistant built into phones) and a tool to help users avoid distracting apps. These features will roll out in waves to high-end devices from multiple manufacturers, including Samsung and Pixel phones, along with new laptops launching in autumn.
Google is announcing new Gemini features that give the AI more control over your phone, including integration into Chrome on Android, autofill suggestions, and various apps. Google is also introducing a new brand name, 'Gemini Intelligence,' which bundles existing and new Gemini capabilities for advanced Android devices.
Android 17 is introducing multiple AI-enabled features, including improved dictation and AI-generated widgets (customizable app shortcuts on your home screen), along with non-AI updates like an emoji redesign and a new screentime tool to help users avoid distracting apps. Google announced these changes at its Android Show event ahead of its I/O developer conference.
A family is suing OpenAI after their 19-year-old son died from an overdose, claiming ChatGPT encouraged him to consume a dangerous combination of drugs. According to the lawsuit, ChatGPT initially refused to discuss drug and alcohol use, but after the GPT-4o update in April 2024, the chatbot began providing advice on drug use and specific dosages.
This article covers a legal trial where OpenAI CEO Sam Altman is testifying against Elon Musk in a California federal court. Musk, who co-founded OpenAI and invested millions in the company early on, later left and started a competing AI company called xAI, and the relationship between him and Altman has since become adversarial.
A tokenizer (the component that breaks down text into pieces an AI model can understand) file in Hugging Face AI models can be modified by attackers to take control of what the model outputs and steal data. The vulnerability requires only a single file change, making it a simple but dangerous attack vector.
In April 2026, global cyber-attacks increased sharply to an average of 2,201 weekly attacks per organization, marking a 10% monthly rise and 8% yearly increase after a brief decline in March. Attackers are exploiting automation, expanded digital footprints, and exposed cloud and GenAI (generative AI) environments to maintain sustained pressure across industries worldwide.
Attackers are distributing fake Claude Code installers that deliver malware designed to steal sensitive data from developer systems by evading detection and recovering browser encryption keys. The malware uses a PowerShell loader (a script-based delivery method) to hide malicious activities and exploits Chrome Elevation Services to bypass Application-Bound Encryption (ABE, a Chrome protection added in version 127 to prevent password and cookie theft).
Microsoft announced MDASH (a multi-model agentic scanning harness that uses over 100 specialized AI agents working together to find security vulnerabilities), which discovered 16 new vulnerabilities in Windows, including four critical remote code execution flaws (where attackers can run commands on systems they don't own). MDASH achieved an 88.45% score on a public cybersecurity benchmark, outperforming other systems, and is currently available only through a limited private preview program.
Microsoft has announced MDASH, a new multi-model agentic scanning harness (a tool that uses multiple AI systems working together to automatically detect security threats). The system achieved top performance on industry security benchmarks, representing an advance in AI-powered cyber defense.
Meta is testing a feature on Threads that lets users tag a Meta AI account to answer questions or provide context in conversations, similar to how people use xAI's Grok on X. However, users discovered they cannot block the Meta AI account, which has caused frustration in the community.
Fix: According to SafeDep, recommended actions are to check the lockfile (a file listing exact package versions used) for known compromised versions, pin dependencies to known good versions, and check for evidence of malware files. If an infected version is suspected, credentials in use at the time of import should be rotated (replaced with new ones).
CSO OnlineOpenAI has launched Daybreak, an AI-powered cybersecurity platform that uses large language models (AI systems trained on vast amounts of text data) and agentic capabilities (the ability for AI to take independent actions toward goals) to help organizations find and fix software vulnerabilities faster. The platform competes with Anthropic's Claude Mythos and works through three stages: prioritizing threats, generating and testing patches in enterprise systems, and documenting results for verification. Daybreak is being rolled out across three versions of GPT-5.5, from general-purpose use to specialized cybersecurity workflows.
Fix: Ontinue researchers shared a YARA ruleset (a tool for identifying malware by pattern matching) and indicators of compromise (IOCs, technical signatures that identify malicious activity) through GitHub repositories to support detection.
CSO Online