Crazy story: > Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repo...
A group used Anthropic's Mythos AI model to help find a kernel memory corruption vulnerability and exploit on Apple's M5. News article.
Good report: > **Executive Summary:** Let's say you wanted to make sure that your AI is secure. Can you just maximize the security and privacy ben...
Not by name, but Laurie Anderson quotes me in one of the tracks of her new album: > My favorite quote is from a cryptologist who said "If you thin...
It's nasty, but it requires physical access to the computer: > The exploit, named YellowKey, was published earlier this week by a researcher who g...
Article about the bigfin squid. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. ...
Some AI-based video age-verification checks can be fooled with a fake mustache.
This is a current list of where and when I am scheduled to speak: * I’m giving a virtual talk on “The Security of Trust in the Age of AI,” hoste...
Last month, Anthropic made a remarkable announcement about its new model, Claude Mythos Preview: it was so good at finding security vulnerabilities...
The UK's AI Security Institute evaluated GPT-5.5's ability to find security vulnerabilities, and found that it is comparable to Claude Mythos. Note...
AI-powered asset discovery, dark web monitoring, CVE alerting, and vulnerability scanning — all in one platform.
