"Palo Alto Networks told Axios it found 75 bugs using both the Anthropic and OpenAI models, vs. the 5-10 bugs it usually discovers each month. Researchers also found the models were increasingly capable of linking seemingly low-severity vulnerabilities into workable attack chains."
"Microsoft said Tuesday its new agentic security system, which runs on several frontier and distilled models, found 16 new vulnerabilities in the Windows networking and authentication stack. Microsoft also warned that AI tools are likely to increase the overall volume of discovered vulnerabilities over time, creating additional pressure on defenders to triage and patch flaws more quickly."
"Cisco this week released "Foundry Security Spec," an open-source blueprint for how organizations should think about using advanced AI models."
"Vendors consistently found that the models performed best when paired with experienced security researchers who could validate findings, guide workflows and distinguish exploitable vulnerabilities from noise. XBOW found that Mythos was "good, but less powerful, at validating exploits" and th"
Anthropic’s Mythos Preview was presented as highly capable at finding tens of thousands of bugs across many operating systems. Third-party testing indicates OpenAI’s GPT-5.5-Cyber matches Mythos in bug discovery and exploit writing. Major companies and governments seek access to understand future attacker capabilities. Early adopters report large increases in findings compared with typical monthly results, including the ability to connect low-severity vulnerabilities into workable attack chains. Microsoft reports new vulnerabilities in Windows networking and authentication and warns that AI will likely raise overall vulnerability volume over time. Cisco released an open-source blueprint for using advanced AI models. Vendors also report best performance when paired with experienced security researchers who validate results and reduce noise.
#ai-cybersecurity #vulnerability-discovery #exploit-development #agentic-security #security-research-workflows
Read at Axios
Unable to calculate read time
Collection
[
|
...
]