TeamPCP put the Mistral files up for sale, but if they're not sold in a week, they'll get leaked.

TeamPCP put the Mistral files up for sale, but if they're not sold in a week, they'll get leaked.

VPN provider Windscribe has warned it will relocate its headquarters if Canada passes the controversial Bill C-22. Joining secure messaging app Signal, the company says the proposed surveillance law threatens the "entire essence" of user privacy.

VPN provider Windscribe has warned it will relocate its headquarters if Canada passes the controversial Bill C-22. Joining secure messaging app Signal, the company says the proposed surveillance law threatens the "entire essence" of user privacy.

Two devices were compromised by TeamPCP's infostealing malware.

Two devices were compromised by TeamPCP's infostealing malware.

Researchers spotted an updated version of the FDMTP backdoor being deployed through DLL sideloading.

Researchers spotted an updated version of the FDMTP backdoor being deployed through DLL sideloading.

The flaw is in the same family as Dirty Frag and allows privilege escalation at kernel level.

A popular WordPress plugin was found carrying two flaws that can cause data leaks.

Chaotic Eclipse is wreaking havoc across the Windows landscape, leaking two more flaws

Anthropic recently announced Project Glasswing, an initiative that enables tech companies like Apple to use its new frontier AI model Claude Mythos Preview to find security vulnerabilities across operating systems and web browsers.


The Wall Street Journal today reported that researchers at cybersecurity firm Calif used Claude Mythos Preview to uncover a new macOS security vulnerability last month. Specifically, they used the model to write code that links together two macOS bugs in a way that resulted in what is known as a privilege escalation exploit.

The security researchers said the exploit would not have been possible with Mythos alone, as it still required their human expertise on top, but it nevertheless proves that AI can assist with discovering software vulnerabilities.

Apple said it was reviewing Calif's report to validate the findings.

"Security is our top priority, and we take reports of potential vulnerabilities very seriously," an Apple spokesperson told The Wall Street Journal.

It is unclear if Apple has already patched the exploit. Apple's security notes for the macOS 26.5 update released this week mention a fix for a kernel-level vulnerability, and it credits Calif and Anthropic for discovering it. Yet, the report said that Calif only met with Apple this week and suggested that a fix was still coming.

We have reached out to Apple for comment.
This article, "Apple Alerted to macOS Security Vulnerability Uncovered With AI Tool" first appeared on MacRumors.com

Discuss this article in our forums

Surfshark has announced a new partnership with Amnesty International to support its Digital Forensics Fellowship, a specialized program teaching human rights defenders to analyze mobile devices for spyware and malicious surveillance.

Surfshark has announced a new partnership with Amnesty International to support its Digital Forensics Fellowship, a specialized program teaching human rights defenders to analyze mobile devices for spyware and malicious surveillance.

100 AI agents worked in unison to discover 16 flaws, including four critical-severity ones.

100 AI agents worked in unison to discover 16 flaws, including four critical-severity ones.

Going "Incognito" won't stop your internet provider from tracking, throttling, and selling your browsing history. Here is exactly how they see what you do online, and the best ways to shut them out.

Most of the app's userbase seems to have been exposed, so users should be on their guard.

Steve Daly was called in to testify about the two ShinyHunters incidents that left students stranded.

The FBI obtained court-authorization to reset thousands of routers remotely, so they could kick lurking Russian hackers out of compromised networks