Security
14 posts
DirtyClone (CVE-2026-43503): Linux local root with no log trail, by overwriting /usr/bin/su
Linux kernel DirtyClone (CVE-2026-43503) lets any local user root the box via XFRM/IPsec packet cloning. No log trail. Patched in 7.1-rc5 — update now.
curl 8.21.0 patches a record 18 CVEs — one hidden 25 years, most found by AI
curl 8.21.0 fixes 18 CVEs at once — a single-release record. One had been hiding since 2001, and at least 11 were found by AI models, including 6 from AISLE alone.
GPT-5.6 needs White House sign-off, customer by customer — first time a US administration vets a frontier model rollout
OpenAI's GPT-5.6 enters limited preview — but the first ~20 enterprise customers each need White House approval. OpenAI says publicly: «this shouldn't be the long-term default.»
Redis patches 5 RCE bugs at once — one hidden two years, PoC public
Redis patched five critical RCE bugs at once on May 5, affecting 7.2.0–8.6.2. CVE-2026-23479 had been hiding for two years. PoC chains are public. Upgrade immediately.
AMD FSR 4.1 lands on RX 7000 in July — INT8 version claims quality parity with FP8
AMD's FSR 4.1 expands from RX 9000 to RX 7000 in July. The INT8 build claims quality parity with the FP8 version. RX 6000 and Steam Deck GPU come early 2027 with shader-based inference.
Google cuts its top security research team — same week it pitches AI security tools
Two weeks into Google Cloud layoffs, the Threat Intelligence Group (GTIG) was cut on June 3 — the same week Google Cloud Next launched new AI security products. Mandiant is also affected.
HTTP/2 Bomb — one home PC drains 32GB of server RAM in 20 seconds
HTTP/2 Bomb: one home PC at 100Mbps can drain 32GB on Apache HTTPD or Envoy in 20 seconds. NGINX, IIS, Envoy and Cloudflare Pingora are all vulnerable in default config.
IBM bets $5B on open-source security — and openly admits Mythos was the trigger
IBM and Red Hat announce Project Lightwell — a $5B, 20,000-engineer open-source security clearinghouse. CEO Arvind Krishna says explicitly: Anthropic's Mythos was the trigger.
Linux CIFSwitch — 18-year-old kernel LPE, PoC public, found by AI semantic graph analysis
Linux kernel CIFSwitch — an 18-year-old local privilege escalation, found via AI-assisted semantic graph analysis. PoC public. Major distros vulnerable, patch and isolate now.
Dead Economy Theory — HN today: 676 points, 859 comments
Two Wharton economists formalize the «AI Layoff Trap»: each firm rationally cuts staff, but collectively this destroys consumer demand. Block laid off nearly half its workforce — stock jumped 25%.
macOS Tahoe 26.5 patches 69 holes — kernel-fix count a multi-year record
macOS Tahoe 26.5 patches 69 security issues — 9 in the kernel alone, a multi-year high. One kernel and one WebKit fix credit «Claude and Anthropic Research».
Anthropic Glasswing month 1 — 10,000+ critical bugs, humans can't patch fast enough
Anthropic Project Glasswing's first month: Claude Mythos Preview and ~50 partners found 10,000+ high/critical vulnerabilities in major systems software. Of ~6,202 disclosed, only 75 patched. Humans can't keep up.
AI cybersecurity arms race — Anthropic Mythos vs OpenAI Daybreak
Within six weeks, both Anthropic (Project Glasswing + Claude Mythos) and OpenAI (Daybreak) entered enterprise cybersecurity. Mozilla used Mythos to fix 271 bugs in Firefox.
GitHub internal repo breach — 3,800 repos accessed, supply chain risk unresolved
GitHub confirms ~3,800 internal repos were accessed by attackers. Hacker group TeamPCP listed source code for $50K+. Entry path: a poisoned VS Code extension (likely Nx Console v18.95.0) on an employee machine.