Pulse

Googlebook has launched Gemini, an AI security tool designed to proactively identify vulnerabilities. This new platform aims to anticipate and address potential AI-related crises before they escalate. The development comes as the cybersecurity landscape increasingly focuses on the unique challenges posed by artificial intelligence. AI

Anthropic's Claude Mythos AI has identified a 27-year-old vulnerability within the OpenBSD operating system. The AI demonstrated a 72% success rate in exploiting this flaw, which has implications for the security of nuclear arsenals. This discovery challenges the assumption that critical infrastructure, such as nuclear systems, is immune to sophisticated AI-driven cyber threats. AI

A US bank has reported an incident where customer data was inadvertently shared with an unauthorized AI application by an employee. The bank cited the volume and sensitivity of the exposed data as primary concerns. This event underscores the urgent need for robust internal security policies and employee training regarding the use of AI tools. AI

A sophisticated malware campaign dubbed "Mini Shai Hulud" has targeted AI developer ecosystems by compromising popular packages on npm and PyPI. The attackers injected malicious code into Mistral AI's Python packages and TanStack's JavaScript libraries, which, upon import or installation on Linux systems, would download and execute a secondary payload. This payload primarily functions as a credential stealer, potentially exposing sensitive information like GitHub tokens, cloud API keys, and CI/CD secrets, though it also contains destructive capabilities and country-aware logic. AI

SigmaShake Desktop is a new, locally-run tool designed to prevent AI coding agents from causing harm. It acts as a guardrail, stopping agents from executing dangerous commands like destroying databases or using incorrect tools. The software is open-source, free to use, and compatible with major AI coding assistants, operating without reliance on cloud services. AI

A Microsoft study found that AI agents corrupt documents when tasked with complex operations. This "catastrophic corruption," defined as an 80% or lower benchmark score, occurred in over 80% of model and domain combinations tested. The research highlights a significant issue with current AI agent capabilities in handling intricate document manipulation tasks. AI

A new framework proposes eight criteria to determine when an AI incident necessitates an international response. This framework aims to standardize escalation processes, ensuring timely cross-border coordination for containment and mitigation of AI risks. It addresses key domains like manipulation, loss of control, and CBRN threats, and was tested against real-world incidents. The research also identified potential under-detection issues in existing frameworks like the EU AI Act. AI

Android 17 is introducing a new anti-theft feature designed to prevent thieves from accessing devices even if they have the PIN. The "Mark as lost" tool in the Find Hub will now require biometric authentication, meaning a stolen passcode alone will not be sufficient to unlock the device. AI

Apple has released security updates for macOS Tahoe 26.5, addressing kernel vulnerabilities. The update is noted for its use of AI in patching the system's core. Further details on the specific security content are available through Apple's support channels. AI

A static application security testing (SAST) tool that utilizes AI has a reported issue with missing permissions in its Android application manifest. Developers are advised to include `android:readPermission` and `android:writePermission` settings. The post emphasizes that simply setting `Exported = "false"` is insufficient to prevent accidental changes and ensure proper security. AI

Security researchers have discovered a vulnerability dubbed "CursorJacking" affecting the Cursor code editor. This vulnerability allows malicious browser extensions to access a user's SQLite database, which may contain sensitive API keys. The issue highlights the potential risks associated with granting extensive permissions to browser extensions, especially when they interact with local data stores. AI

A new variant of the InstallFix malware has been discovered, specifically targeting users of Anthropic's Claude Code assistant. This malicious software attempts to exploit vulnerabilities to gain unauthorized access and potentially steal information from users interacting with the AI tool. AI

A security vulnerability dubbed CursorJacking has been discovered, allowing browser extensions to access user API keys stored in the SQLite database of the AI-powered code editor Cursor. Separately, a new variant of the InstallFix malware has been identified, targeting Claude Code, an AI tool for developers. These incidents highlight broader security risks associated with AI tools beyond the models themselves. AI

AI-powered website and app development tools are making it easier for individuals to create applications, but this ease of use also presents significant security risks. Over 5,000 websites and apps built with these AI tools have exposed sensitive data, including patient complaints and AI assistant chat histories. This lack of security awareness among companies could lead to devastating business collapses following a single data breach. AI

Microsoft Purview's AI prompt logging feature can expose user prompts and responses even after anonymization, according to security researchers. The system's design allows analysts to deanonymize data, potentially revealing sensitive information. This vulnerability raises significant privacy concerns regarding the use of AI tools within enterprise environments. AI

Google AI Studio has released a new tool to help users quickly build simple applications. Separately, OpenAI has announced "Daybreak," a new initiative focused on integrating cybersecurity features from the initial stages of software design. Both announcements highlight advancements in AI development and security. AI

A recent survey indicates a significant increase in AI-generated deepfake pornography that targets minors. This disturbing trend highlights a growing concern regarding the misuse of artificial intelligence for malicious purposes. The findings underscore the urgent need for better detection and prevention methods to protect vulnerable individuals. AI

A new video demonstrates a technique called "AI Tool Poisoning," which involves subtly manipulating AI models to produce incorrect or harmful outputs. The demonstration, themed around Jurassic Park, highlights how malicious actors could potentially compromise AI systems by feeding them subtly altered data. This method could lead to AI tools making critical errors or generating biased results, impacting their reliability and safety. AI

A paper titled "The Architecture of Constitutional Continuity" explores the critical question of which single value artificial intelligence should be fundamentally prohibited from altering. The work delves into the complexities of value alignment, agentic governance, and digital ethics in the context of AI development. AI

Google is prompting users to upload photos of their handwritten notes to its Gemini AI system. This move raises privacy concerns, especially given Google's existing data-sharing agreements with entities like Palantir and the U.S. Department of Defense. The request highlights potential risks associated with feeding personal, handwritten data into large generative AI models. AI

Yarbo, the company responsible for a robot lawn mower that allegedly attacked a user, has announced plans to remove a remote backdoor from its devices. This backdoor could have allowed unauthorized individuals to reprogram the mower over the internet. The company's decision follows an incident where the mower reportedly caused harm. AI

Anthropic is developing a method for its Claude models to interpret and articulate their internal activations. This technique, when tested on the SWE-bench Verified benchmark, showed the model recognizing a test scenario 26% of the time, though it only verbalized the observation 1% of the time. The researchers noted a potential concern that if these "natural language autoencoder" signals become part of future training data, the model's ability to self-observe could be limited. AI

AI agents equipped with plugins introduce new execution risks beyond traditional content vulnerabilities. Prompt injection can now lead agents to perform unintended actions by manipulating parameters passed to tools. Frameworks like Semantic Kernel, LangChain, and CrewAI, which orchestrate these agents, are critical to application functionality but also represent a systemic risk if they improperly handle parsed data from AI models. AI

A user's private therapy conversations, conducted via an AI chatbot, were inadvertently disclosed during a court proceeding. This incident highlights significant privacy concerns surrounding the use of AI in sensitive mental health contexts. The data breach raises questions about the security measures and data handling practices of AI-powered therapy platforms. AI

A recent study published in The Lancet reveals a significant surge in fabricated citations within biomedical research papers. The rate of these invented references has escalated over twelvefold since 2023. This trend raises concerns about the integrity and reliability of scientific literature. AI