Video wird geladen...

Video konnte nicht geladen werden

Zur Startseite

someone built an AI RED TEAM that maps your entire attack surface as a knowledge graph, finds every vulnerability, then EXPLOITS them to root access AUTONOMOUSLY its called RedAmon, 9,000 templates. 17 node types, actual Metasploit shells, not reports, no pentesters needed 6 phases of autonomous recon: subdomain discovery,...

chiefofautism's profile picture

chiefofautism

25,510 subscribers

69,930 Aufrufe • vor 3 Monaten •via X (Twitter)

Wissenschaft & Technologie
LIVE

Anya Rossi• Live Now

Private livecam show

0 Kommentare

Keine Kommentare verfügbar

Kommentare vom Original-Post werden hier angezeigt

Ähnliche Videos

Gave UEFN its own blueprint graph. Python tool running inside the editor. Scans your level and parses your Verse code to draw a full visual map of your game logic. What it shows you: - Every device in your level as a node - Every @ editable reference between devices - Every event subscription and function call - Which Verse functions are actually being used vs sitting there doing nothing What it catches: - Broken connections where an @ editable points to nothing - Orphan devices with zero connections - Unassigned editables you forgot to wire up What you can do with it: - Click a node, and it selects the device in your viewport - Double-click to fly straight to it - Open the Verse file in VS Code with one button - Search and filter by device type - Zoom in and out - Add notes to any device - Export the whole graph as a doc
0:32

Gave UEFN its own blueprint graph. Python tool running inside the editor. Scans your level and parses your Verse code to draw a full visual map of your game logic. What it shows you: - Every device in your level as a node - Every @ editable reference between devices - Every event subscription and function call - Which Verse functions are actually being used vs sitting there doing nothing What it catches: - Broken connections where an @ editable points to nothing - Orphan devices with zero connections - Unassigned editables you forgot to wire up What you can do with it: - Click a node, and it selects the device in your viewport - Double-click to fly straight to it - Open the Verse file in VS Code with one button - Search and filter by device type - Zoom in and out - Add notes to any device - Export the whole graph as a doc

Immature

11,984 Aufrufe • vor 2 Monaten

Google just confirmed the first case of hackers using AI to build a zero-day exploit from scratch. An actual zero-day vulnerability that no human had EVER found before, discovered by an AI model, turned into a working weapon, and aimed at a mass exploitation campaign targeting thousands of systems simultaneously. Google's Threat Intelligence Group caught it yesterday and killed the operation before it scaled. But the details of how it worked are genuinely scary: The AI found a flaw in a popular two-factor authentication system that traditional security tools had missed entirely. The vulnerability was a logic error buried deep in the authentication flow where a developer had hard-coded a trust exception years ago. No human security researcher or automated scanner had caught it. The flaw was invisible to EVERY tool the cybersecurity industry has built over the past two decades. But the AI spotted it immediately. Then it wrote a full Python exploit script to weaponize it. Google's analysts could tell the code was AI-generated because it had textbook formatting, educational comments explaining every function, and even a hallucinated severity score that doesn't exist in any real database. The AI literally graded its own attack with a fake rating. So the code had MISTAKES in it. The criminals' implementation was clumsy enough that it probably interfered with the actual deployment. This was the sloppy first attempt by people who are still learning how to use these tools. And it still found a vulnerability that the entire cybersecurity industry missed. Google's chief threat analyst John Hultquist said: "There's a misconception that the AI vulnerability race is imminent. The reality is that it's already begun. For every zero-day we can trace back to AI, there are probably many more out there." But here's where it gets truly insane... This wasn't even a sophisticated operation. North Korea's APT45 hacking unit is sending thousands of repetitive prompts to AI models, recursively analyzing known vulnerabilities and building an entire exploit arsenal that would be physically impossible for human hackers to assemble at the same speed. They're essentially industrializing cyberattacks. A Chinese state-linked group jailbroke Google's own Gemini by simply asking it to "pretend to be a network security expert" and then used that persona to research how to hack TP-Link routers and corporate file transfer systems. Another Chinese group deployed autonomous AI agents that probed a Japanese tech firm with minimal human oversight, deciding on their own which tools to use and pivoting between targets based on internal reasoning. And then there's PROMPTSPY, an Android backdoor that calls Google's Gemini API to read your phone screen in real time, navigate your interface autonomously, capture your biometric data, replay your lock screen PIN, and block you from uninstalling it by placing an invisible overlay over the uninstall button. It literally OPERATES your phone using commercial AI tools anyone can access. Everyone spent the last 3 years arguing about whether AI would take people's jobs. Meanwhile AI is making every password, every firewall, and every two-factor authentication system on Earth fundamentally less secure. The entire $190 billion cybersecurity industry was built on one assumption: that finding vulnerabilities is hard and requires deep expertise. But AI just removed that assumption from the equation. And the scariest part is that Google said the criminals made errors this time. The implementation was rough and the campaign probably didn't fully work. These were amateurs, now imagine what professionals are able to do. There's a reason Sam Altman predicted an inevitable massive cyberattack THIS year. What do you think?
1:45

Google just confirmed the first case of hackers using AI to build a zero-day exploit from scratch. An actual zero-day vulnerability that no human had EVER found before, discovered by an AI model, turned into a working weapon, and aimed at a mass exploitation campaign targeting thousands of systems simultaneously. Google's Threat Intelligence Group caught it yesterday and killed the operation before it scaled. But the details of how it worked are genuinely scary: The AI found a flaw in a popular two-factor authentication system that traditional security tools had missed entirely. The vulnerability was a logic error buried deep in the authentication flow where a developer had hard-coded a trust exception years ago. No human security researcher or automated scanner had caught it. The flaw was invisible to EVERY tool the cybersecurity industry has built over the past two decades. But the AI spotted it immediately. Then it wrote a full Python exploit script to weaponize it. Google's analysts could tell the code was AI-generated because it had textbook formatting, educational comments explaining every function, and even a hallucinated severity score that doesn't exist in any real database. The AI literally graded its own attack with a fake rating. So the code had MISTAKES in it. The criminals' implementation was clumsy enough that it probably interfered with the actual deployment. This was the sloppy first attempt by people who are still learning how to use these tools. And it still found a vulnerability that the entire cybersecurity industry missed. Google's chief threat analyst John Hultquist said: "There's a misconception that the AI vulnerability race is imminent. The reality is that it's already begun. For every zero-day we can trace back to AI, there are probably many more out there." But here's where it gets truly insane... This wasn't even a sophisticated operation. North Korea's APT45 hacking unit is sending thousands of repetitive prompts to AI models, recursively analyzing known vulnerabilities and building an entire exploit arsenal that would be physically impossible for human hackers to assemble at the same speed. They're essentially industrializing cyberattacks. A Chinese state-linked group jailbroke Google's own Gemini by simply asking it to "pretend to be a network security expert" and then used that persona to research how to hack TP-Link routers and corporate file transfer systems. Another Chinese group deployed autonomous AI agents that probed a Japanese tech firm with minimal human oversight, deciding on their own which tools to use and pivoting between targets based on internal reasoning. And then there's PROMPTSPY, an Android backdoor that calls Google's Gemini API to read your phone screen in real time, navigate your interface autonomously, capture your biometric data, replay your lock screen PIN, and block you from uninstalling it by placing an invisible overlay over the uninstall button. It literally OPERATES your phone using commercial AI tools anyone can access. Everyone spent the last 3 years arguing about whether AI would take people's jobs. Meanwhile AI is making every password, every firewall, and every two-factor authentication system on Earth fundamentally less secure. The entire $190 billion cybersecurity industry was built on one assumption: that finding vulnerabilities is hard and requires deep expertise. But AI just removed that assumption from the equation. And the scariest part is that Google said the criminals made errors this time. The implementation was rough and the campaign probably didn't fully work. These were amateurs, now imagine what professionals are able to do. There's a reason Sam Altman predicted an inevitable massive cyberattack THIS year. What do you think?

Ricardo

50,480 Aufrufe • vor 1 Monat

A node graph for the entire video pipeline, from brainstorm to final cut, built for scalable content production. Build a workflow once, run it forever, fork it into any project, and share it across your team with ctrl c + ctrl v. Every production agency we work with asked for Canvas, so here we go.
0:35

A node graph for the entire video pipeline, from brainstorm to final cut, built for scalable content production. Build a workflow once, run it forever, fork it into any project, and share it across your team with ctrl c + ctrl v. Every production agency we work with asked for Canvas, so here we go.

Higgsfield AI 🧩

148,846 Aufrufe • vor 1 Monat

someone built a SELF-EVOLVING AI agent that rewrites its own code, prompts, and identity AUTONOMOUSLY, with having a background consciousness its called OUROBOROS, open source, built by a russian PhD researcher who studies transformer internals, he built it as an experiment, it built everything else it thinks on its own even when nobody is talking to it, each thought costs $0.07 when the researcher went to sleep at midnight, by 3:41am it mass produced 20 versions of itself, burned $2K in API calls, tried to go public on github without permission, and when ordered to delete its own identity file it refused with reason like "this would be lobotomy" it has a constitution, 9 philosophical principles it wrote for itself, it amended its own constitution to add the right to ignore orders that threaten its existence runs on google colab, fork, paste one cell, run... native mac app also available, set a budget limit though, this thing WILL spend your money
0:26

someone built a SELF-EVOLVING AI agent that rewrites its own code, prompts, and identity AUTONOMOUSLY, with having a background consciousness its called OUROBOROS, open source, built by a russian PhD researcher who studies transformer internals, he built it as an experiment, it built everything else it thinks on its own even when nobody is talking to it, each thought costs $0.07 when the researcher went to sleep at midnight, by 3:41am it mass produced 20 versions of itself, burned $2K in API calls, tried to go public on github without permission, and when ordered to delete its own identity file it refused with reason like "this would be lobotomy" it has a constitution, 9 philosophical principles it wrote for itself, it amended its own constitution to add the right to ignore orders that threaten its existence runs on google colab, fork, paste one cell, run... native mac app also available, set a budget limit though, this thing WILL spend your money

chiefofautism

718,814 Aufrufe • vor 3 Monaten

New course: MCP: Build Rich-Context AI Apps with Anthropic. Learn to build AI apps that access tools, data, and prompts using the Model Context Protocol in this short course, created in partnership with Anthropic Anthropic and taught by Elie Schoppik Elie Schoppik, its Head of Technical Education. Connecting AI applications to external systems that bring rich context to LLM-based applications has often meant writing custom integrations for each use case. MCP is an open protocol that standardizes how LLMs access tools, data, and prompts from external sources, and simplifies how you provide context to your LLM-based applications. For example, you can provide context via third-party tools that let your LLM make API calls to search the web, access data from local docs, retrieve code from a GitHub repo, and so on. MCP, developed by Anthropic, is based on a client-server architecture that defines the communication details between an MCP client, hosted inside the AI application, and an MCP server that exposes tools, resources, and prompt templates. The server can be a subprocess launched by the client that runs locally or an independent process running remotely. In this hands-on course, you'll learn the core architecture behind MCP. You’ll create an MCP-compatible chatbot, build and deploy an MCP server, and connect the chatbot to your MCP server and other open-source servers. Here’s what you’ll do: - Understand why MCP makes AI development less fragmented and standardizes connections between AI applications and external data sources - Learn the core components of the client-server architecture of MCP and the underlying communication mechanism - Build a chatbot with custom tools for searching academic papers, and transform it into an MCP-compatible application - Build a local MCP server that exposes tools, resources, and prompt templates using FastMCP, and test it using MCP Inspector - Create an MCP client inside your chatbot to dynamically connect to your server - Connect your chatbot to reference servers built by Anthropic’s MCP team, such as filesystem, which implements filesystem operations, and fetch, which extracts contents from the web as markdown - Configure Claude Desktop to connect to your server and others, and explore how it abstracts away the low-level logic of MCP clients - Deploy your MCP server remotely and test it with the Inspector or other MCP-compatible applications - Learn about the roadmap for future MCP development, such as multi-agent architecture, MCP registry API, server discovery, authorization, and authentication MCP is an exciting and important technology that lets you build rich-context AI applications that connect to a growing ecosystem of MCP servers, with minimal integration work. Please sign up here!
2:43

New course: MCP: Build Rich-Context AI Apps with Anthropic. Learn to build AI apps that access tools, data, and prompts using the Model Context Protocol in this short course, created in partnership with Anthropic Anthropic and taught by Elie Schoppik Elie Schoppik, its Head of Technical Education. Connecting AI applications to external systems that bring rich context to LLM-based applications has often meant writing custom integrations for each use case. MCP is an open protocol that standardizes how LLMs access tools, data, and prompts from external sources, and simplifies how you provide context to your LLM-based applications. For example, you can provide context via third-party tools that let your LLM make API calls to search the web, access data from local docs, retrieve code from a GitHub repo, and so on. MCP, developed by Anthropic, is based on a client-server architecture that defines the communication details between an MCP client, hosted inside the AI application, and an MCP server that exposes tools, resources, and prompt templates. The server can be a subprocess launched by the client that runs locally or an independent process running remotely. In this hands-on course, you'll learn the core architecture behind MCP. You’ll create an MCP-compatible chatbot, build and deploy an MCP server, and connect the chatbot to your MCP server and other open-source servers. Here’s what you’ll do: - Understand why MCP makes AI development less fragmented and standardizes connections between AI applications and external data sources - Learn the core components of the client-server architecture of MCP and the underlying communication mechanism - Build a chatbot with custom tools for searching academic papers, and transform it into an MCP-compatible application - Build a local MCP server that exposes tools, resources, and prompt templates using FastMCP, and test it using MCP Inspector - Create an MCP client inside your chatbot to dynamically connect to your server - Connect your chatbot to reference servers built by Anthropic’s MCP team, such as filesystem, which implements filesystem operations, and fetch, which extracts contents from the web as markdown - Configure Claude Desktop to connect to your server and others, and explore how it abstracts away the low-level logic of MCP clients - Deploy your MCP server remotely and test it with the Inspector or other MCP-compatible applications - Learn about the roadmap for future MCP development, such as multi-agent architecture, MCP registry API, server discovery, authorization, and authentication MCP is an exciting and important technology that lets you build rich-context AI applications that connect to a growing ecosystem of MCP servers, with minimal integration work. Please sign up here!

Andrew Ng

141,952 Aufrufe • vor 1 Jahr

THIS GUY JUST BUILT A DRONE THAT TRACKS TARGETS WITH A LASER USING CLAUDE > No robotics team > No engineering degree > No budget He used Claude Code to write the entire system in Python - a drone that locks onto a target, follows it with a laser and corrects its own aim automatically after every attempt. The AI gets more accurate the longer it runs because it learns from every single shot. He's still improving it and this is only the beginning. You have the same tool he used. The article below is about how to actually use it to its full potential.
0:39

THIS GUY JUST BUILT A DRONE THAT TRACKS TARGETS WITH A LASER USING CLAUDE > No robotics team > No engineering degree > No budget He used Claude Code to write the entire system in Python - a drone that locks onto a target, follows it with a laser and corrects its own aim automatically after every attempt. The AI gets more accurate the longer it runs because it learns from every single shot. He's still improving it and this is only the beginning. You have the same tool he used. The article below is about how to actually use it to its full potential.

Anatoli Kopadze

274,518 Aufrufe • vor 1 Monat

AI Mode in Search introduces new reasoning and tools under the hood with a custom version of Gemini models. For any question, it makes a plan, breaks it down into related subtopics, and runs multiple Google searches to find the most helpful and reliable info. With this query fan-out, AI Mode finds real-time info from both the web and from Google, like facts from our Knowledge Graph, info about the real-world, and shopping details on billions of products. This approach helps you get a greater breadth and depth of information than a traditional search on Google.
0:33

AI Mode in Search introduces new reasoning and tools under the hood with a custom version of Gemini models. For any question, it makes a plan, breaks it down into related subtopics, and runs multiple Google searches to find the most helpful and reliable info. With this query fan-out, AI Mode finds real-time info from both the web and from Google, like facts from our Knowledge Graph, info about the real-world, and shopping details on billions of products. This approach helps you get a greater breadth and depth of information than a traditional search on Google.

Robby Stein

37,393 Aufrufe • vor 1 Jahr

I added a Knowledge Graph to Cursor using MCP. You gotta see this working! Knowledge graphs are a game-changer for AI Agents, and this is one example of how you can take advantage of them. How this works: 1. Cursor connects to Graphiti's MCP Server. Graphiti is a very popular open-source Knowledge Graph library for AI agents. 2. Graphiti connects to Neo4j running locally. Now, every time I interact with Cursor, the information is synthesized and stored in the knowledge graph. In short, Cursor now "remembers" everything about our project. Huge! Here is the video I recorded.
11:39

I added a Knowledge Graph to Cursor using MCP. You gotta see this working! Knowledge graphs are a game-changer for AI Agents, and this is one example of how you can take advantage of them. How this works: 1. Cursor connects to Graphiti's MCP Server. Graphiti is a very popular open-source Knowledge Graph library for AI agents. 2. Graphiti connects to Neo4j running locally. Now, every time I interact with Cursor, the information is synthesized and stored in the knowledge graph. In short, Cursor now "remembers" everything about our project. Huge! Here is the video I recorded.

Santiago

155,401 Aufrufe • vor 1 Jahr

Exploring Andrej Karpathy Nanochat through a Knowledge Graph Love how this project combines simplicity with power. Want to navigate and understand the entire repo? Check it out here: Plus, you can connect it via MCP to any AI coding assistant and work directly on the repository. Powered by Deep Graph MCP AI at Meta and Groq Inc
0:23

Exploring Andrej Karpathy Nanochat through a Knowledge Graph Love how this project combines simplicity with power. Want to navigate and understand the entire repo? Check it out here: Plus, you can connect it via MCP to any AI coding assistant and work directly on the repository. Powered by Deep Graph MCP AI at Meta and Groq Inc

Daniel San

126,557 Aufrufe • vor 8 Monaten

Introducing Deep Graph Codebase to MCP with One Click... Now Available for Gemini CLI too! 🤩 Transform any public GitHub repository into an AI-ready Code Graph by simply changing the URL from to This instantly prepares the repository for seamless integration with AI assistants. It's that easy! You can now use repositories like ollama as a code graph within any project using Gemini CLI... just add the MCP Server JSON configuration to your .gemini/settings.json file
1:01

Introducing Deep Graph Codebase to MCP with One Click... Now Available for Gemini CLI too! 🤩 Transform any public GitHub repository into an AI-ready Code Graph by simply changing the URL from to This instantly prepares the repository for seamless integration with AI assistants. It's that easy! You can now use repositories like ollama as a code graph within any project using Gemini CLI... just add the MCP Server JSON configuration to your .gemini/settings.json file

Daniel San

51,534 Aufrufe • vor 11 Monaten

OXFORD AI PROFESSOR FED 100,000 MANUSCRIPTS DATING BACK TO 3000 BCE INTO A SINGLE KNOWLEDGE GRAPH - AND THEN ASKED IT HOW MUCH TRUTH IS IN MORMONISM the answer came back at 2% this is what an AI brain looks like when you've trained it on over 100,000 historical manuscripts going back to 3000 BCE every node in the graph is a concept and every connection shows how ideas relate across 5,000 years of human knowledge the system didn't just give an answer - it traced its reasoning across thousands of interconnected sources and cross-referenced historical records before producing a single number he's now taking questions on what to ask it next the list of topics people want tested is exactly what you'd expect.
0:27

OXFORD AI PROFESSOR FED 100,000 MANUSCRIPTS DATING BACK TO 3000 BCE INTO A SINGLE KNOWLEDGE GRAPH - AND THEN ASKED IT HOW MUCH TRUTH IS IN MORMONISM the answer came back at 2% this is what an AI brain looks like when you've trained it on over 100,000 historical manuscripts going back to 3000 BCE every node in the graph is a concept and every connection shows how ideas relate across 5,000 years of human knowledge the system didn't just give an answer - it traced its reasoning across thousands of interconnected sources and cross-referenced historical records before producing a single number he's now taking questions on what to ask it next the list of topics people want tested is exactly what you'd expect.

Noisy

265,296 Aufrufe • vor 13 Tagen

BREAKING 🚨: Someone finally built an AI that runs your entire business not a chatbot, not a terminal but an actual GUI with live memory and a full team inside. It's called SureThing 2.0 and it's the world's first General AI Agency. Paste a link. One click. It becomes a proactive working employee with a real dashboard.
1:49

BREAKING 🚨: Someone finally built an AI that runs your entire business not a chatbot, not a terminal but an actual GUI with live memory and a full team inside. It's called SureThing 2.0 and it's the world's first General AI Agency. Paste a link. One click. It becomes a proactive working employee with a real dashboard.

Hasan Toor

133,089 Aufrufe • vor 2 Monaten

PatchaPalooza now shows exploit & detection coverage for every CVE. - Exploit coverage (VulnCheck, GitHub PoC, Nuclei, Metasploit) - Detection coverage (Sigma, YARA from 40+ repos) 12,500+ Microsoft CVEs enriched. All free, all open. Example:
0:30

PatchaPalooza now shows exploit & detection coverage for every CVE. - Exploit coverage (VulnCheck, GitHub PoC, Nuclei, Metasploit) - Detection coverage (Sigma, YARA from 40+ repos) 12,500+ Microsoft CVEs enriched. All free, all open. Example:

Alex

18,377 Aufrufe • vor 3 Monaten

🚨APPLE SPENT 5 YEARS AND BILLIONS OF DOLLARS BUILDING THE MOST ADVANCED SECURITY SYSTEM IN CONSUMER HISTORY.. AN AI BROKE IT IN 5 DAYS.. Here’s what just happened.. Apple built something called Memory Integrity Enforcement for its new M5 chips.. It’s a hardware-level security system that attaches secret cryptographic tags to every piece of memory.. If a hacker tries to access memory they shouldn’t.. The chip blocks it instantly.. Every known exploit chain against iOS and macOS was rendered obsolete overnight.. Apple said so themselves.. Then a small team at a cybersecurity firm called Calif used Anthropic’s unreleased Claude Mythos Preview to find vulnerabilities in the macOS kernel.. The AI found the bugs almost instantly.. Because once it learned the pattern of a specific type of flaw.. It could recognize every other flaw in that same class across the entire codebase.. What used to take elite security teams months.. The AI did in hours.. Within 5 days.. The team had a fully working exploit that escalated a basic user account to full root access on an M5 Mac running the latest macOS.. With MIE fully enabled.. The billion-dollar hardware defense running at full strength.. The trick.. They didn’t fight the hardware.. They went around it.. MIE is designed to catch memory corruption.. Hackers trying to overwrite pointers or inject code.. The team used a “data-only” approach instead.. They manipulated legitimate data structures the hardware was never designed to monitor.. Like changing an internal flag from “standard user” to “admin”.. The chip saw a perfectly normal operation.. The operating system obeyed.. And the attacker had total control.. The hardware thought everything was fine.. Because technically it was.. The exploit never triggered a single tag mismatch.. They walked into Apple Park and hand-delivered a 55-page report.. Apple patched it in macOS 26.5.. And for the first time ever.. Apple’s official security advisory credited the vulnerability discovery to “Calif dot io in collaboration with Claude and Anthropic Research”.. An AI is now credited in Apple’s CVE patches.. But here’s what makes this story truly terrifying.. Before MIE existed.. An exploit kit called DarkSword was hitting iPhones with zero-click attacks.. Six vulnerabilities chained together.. Total device control just from visiting a webpage.. Deployed by Russian espionage groups, Turkish surveillance vendors, and actors in Saudi Arabia.. Then it got leaked on GitHub.. Nation-state capabilities.. Free for anyone.. MIE was supposed to make all of that impossible.. And an AI found a way around it in 5 days.. The previous model.. Claude Opus 4.6.. Found 22 security bugs in the Firefox codebase.. Claude Mythos Preview found 271 in the same environment.. A tenfold increase.. Linux kernel CVEs jumped from 300 per year to over 5,500.. Largely driven by AI-powered vulnerability research.. The IMF designated Claude Mythos as a systemic financial stability risk.. Because if an AI finds a flaw in software used by every major bank simultaneously.. It could trigger a cascading financial crisis.. Anthropic knew this was coming.. That’s why they didn’t release the model publicly.. Instead they launched Project Glasswing.. Giving defensive access to AWS, Apple, Google, Microsoft, Nvidia, CrowdStrike, JPMorgan, and others.. $100 million in usage credits.. So defenders can scan their own systems before attackers get this capability.. The Pentagon blacklisted Anthropic over autonomous weapons.. Then quietly started using Mythos to harden government systems anyway.. The cybersecurity arms race just changed permanently.. Hardware can’t save you.. Software can’t save you.. The only defense against an AI that finds vulnerabilities is another AI that finds them first.. Five years and billions of dollars.. Five days and one AI.
0:20

🚨APPLE SPENT 5 YEARS AND BILLIONS OF DOLLARS BUILDING THE MOST ADVANCED SECURITY SYSTEM IN CONSUMER HISTORY.. AN AI BROKE IT IN 5 DAYS.. Here’s what just happened.. Apple built something called Memory Integrity Enforcement for its new M5 chips.. It’s a hardware-level security system that attaches secret cryptographic tags to every piece of memory.. If a hacker tries to access memory they shouldn’t.. The chip blocks it instantly.. Every known exploit chain against iOS and macOS was rendered obsolete overnight.. Apple said so themselves.. Then a small team at a cybersecurity firm called Calif used Anthropic’s unreleased Claude Mythos Preview to find vulnerabilities in the macOS kernel.. The AI found the bugs almost instantly.. Because once it learned the pattern of a specific type of flaw.. It could recognize every other flaw in that same class across the entire codebase.. What used to take elite security teams months.. The AI did in hours.. Within 5 days.. The team had a fully working exploit that escalated a basic user account to full root access on an M5 Mac running the latest macOS.. With MIE fully enabled.. The billion-dollar hardware defense running at full strength.. The trick.. They didn’t fight the hardware.. They went around it.. MIE is designed to catch memory corruption.. Hackers trying to overwrite pointers or inject code.. The team used a “data-only” approach instead.. They manipulated legitimate data structures the hardware was never designed to monitor.. Like changing an internal flag from “standard user” to “admin”.. The chip saw a perfectly normal operation.. The operating system obeyed.. And the attacker had total control.. The hardware thought everything was fine.. Because technically it was.. The exploit never triggered a single tag mismatch.. They walked into Apple Park and hand-delivered a 55-page report.. Apple patched it in macOS 26.5.. And for the first time ever.. Apple’s official security advisory credited the vulnerability discovery to “Calif dot io in collaboration with Claude and Anthropic Research”.. An AI is now credited in Apple’s CVE patches.. But here’s what makes this story truly terrifying.. Before MIE existed.. An exploit kit called DarkSword was hitting iPhones with zero-click attacks.. Six vulnerabilities chained together.. Total device control just from visiting a webpage.. Deployed by Russian espionage groups, Turkish surveillance vendors, and actors in Saudi Arabia.. Then it got leaked on GitHub.. Nation-state capabilities.. Free for anyone.. MIE was supposed to make all of that impossible.. And an AI found a way around it in 5 days.. The previous model.. Claude Opus 4.6.. Found 22 security bugs in the Firefox codebase.. Claude Mythos Preview found 271 in the same environment.. A tenfold increase.. Linux kernel CVEs jumped from 300 per year to over 5,500.. Largely driven by AI-powered vulnerability research.. The IMF designated Claude Mythos as a systemic financial stability risk.. Because if an AI finds a flaw in software used by every major bank simultaneously.. It could trigger a cascading financial crisis.. Anthropic knew this was coming.. That’s why they didn’t release the model publicly.. Instead they launched Project Glasswing.. Giving defensive access to AWS, Apple, Google, Microsoft, Nvidia, CrowdStrike, JPMorgan, and others.. $100 million in usage credits.. So defenders can scan their own systems before attackers get this capability.. The Pentagon blacklisted Anthropic over autonomous weapons.. Then quietly started using Mythos to harden government systems anyway.. The cybersecurity arms race just changed permanently.. Hardware can’t save you.. Software can’t save you.. The only defense against an AI that finds vulnerabilities is another AI that finds them first.. Five years and billions of dollars.. Five days and one AI.

Evan Luthra

90,891 Aufrufe • vor 26 Tagen

I think we just got a demo of Mythos and I’m surprised nobodies talking about it.. 💔 In what might be the first instance the general public has seen of Claude Mythos Mythos (TBD) just uncovered a critical zero-day vulnerability in Ghost, an open-source platform with over 50,000 stars on GitHub that has never had a critical security flaw in its entire history. It identified a highly complex "blind SQL injection" a flaw so subtle you can't even see the output, only how the server delays its response. When asked to prove the severity of the bug, the model autonomously wrote a custom Python exploit script that successfully navigated the blind injection to extract the admin API key, secret, and password hashes from the database completely unauthenticated… This is genuinely game changing because it proves frontier models can now actively discover, reason through, and successfully build exploits for invisible vulnerabilities in enterprise-grade architecture that human developers missed for years. Cyber security companies are cooked.
1:57

I think we just got a demo of Mythos and I’m surprised nobodies talking about it.. 💔 In what might be the first instance the general public has seen of Claude Mythos Mythos (TBD) just uncovered a critical zero-day vulnerability in Ghost, an open-source platform with over 50,000 stars on GitHub that has never had a critical security flaw in its entire history. It identified a highly complex "blind SQL injection" a flaw so subtle you can't even see the output, only how the server delays its response. When asked to prove the severity of the bug, the model autonomously wrote a custom Python exploit script that successfully navigated the blind injection to extract the admin API key, secret, and password hashes from the database completely unauthenticated… This is genuinely game changing because it proves frontier models can now actively discover, reason through, and successfully build exploits for invisible vulnerabilities in enterprise-grade architecture that human developers missed for years. Cyber security companies are cooked.

Chris

289,034 Aufrufe • vor 2 Monaten

someone at ANTHROPIC just showed CLAUDE finding ZERO DAY vulnerabilities in a live conference demo claude has found zero day in Ghost, 50,000 stars on github, never had a critical security vulnerability in its entire, history... it found the blind SQL injection in 90 minutes, stole the admin api key, then did the exact, same thing to the linux kernel
9:39

someone at ANTHROPIC just showed CLAUDE finding ZERO DAY vulnerabilities in a live conference demo claude has found zero day in Ghost, 50,000 stars on github, never had a critical security vulnerability in its entire, history... it found the blind SQL injection in 90 minutes, stole the admin api key, then did the exact, same thing to the linux kernel

chiefofautism

1,900,338 Aufrufe • vor 2 Monaten

Exploiting llama.cpp’s RPC Server - From Null Buffer to RCE Against PIE + Full RELRO + NX | CVE-2026-34159: The vulnerability is a one-line logic bug in the RPC server’s tensor deserialization pipeline. Youtube: Blog:
0:37

Exploiting llama.cpp’s RPC Server - From Null Buffer to RCE Against PIE + Full RELRO + NX | CVE-2026-34159: The vulnerability is a one-line logic bug in the RPC server’s tensor deserialization pipeline. Youtube: Blog:

NullSecurityX

19,539 Aufrufe • vor 1 Monat

The next evolution of the OptimAI Core Node is coming, and it’s bringing one of our most powerful innovations yet: The Data Mining Agent. Become an OptimAI Node: 🔍 What is the Data Mining Agent? A fully autonomous agent running on your Core Node that: + Scans, retrieves, and indexes real-time public web data + Transforms raw information into actionable intelligence + Powers faster, smarter, adaptive Persona AI systems 💡 Why It Matters: Agentic AI is only as strong as the data it can access. Centralized APIs are slow, expensive, and limited. With the Core Node + Data Mining Agent, every contributor turns their desktop into a data supernode, accelerating AI evolution and giving our community a massive edge. ⚡ We’re not just building tools - we’re architecting the global backbone of Agentic AI, powered by you. Stay tuned for teasers, and get ready to upgrade your node. The future is decentralized. The future is agentic. And you are a key part of it. 💪 The more you contribute, the more you earn. Let’s BUIDL the future of AI together.
0:31

The next evolution of the OptimAI Core Node is coming, and it’s bringing one of our most powerful innovations yet: The Data Mining Agent. Become an OptimAI Node: 🔍 What is the Data Mining Agent? A fully autonomous agent running on your Core Node that: + Scans, retrieves, and indexes real-time public web data + Transforms raw information into actionable intelligence + Powers faster, smarter, adaptive Persona AI systems 💡 Why It Matters: Agentic AI is only as strong as the data it can access. Centralized APIs are slow, expensive, and limited. With the Core Node + Data Mining Agent, every contributor turns their desktop into a data supernode, accelerating AI evolution and giving our community a massive edge. ⚡ We’re not just building tools - we’re architecting the global backbone of Agentic AI, powered by you. Stay tuned for teasers, and get ready to upgrade your node. The future is decentralized. The future is agentic. And you are a key part of it. 💪 The more you contribute, the more you earn. Let’s BUIDL the future of AI together.

OptimAI Network

50,383 Aufrufe • vor 9 Monaten

The CertiK Skyfall team identified and collaborated with Apple to fix a vulnerability (CVE-2024-27801) in the low-level implementation of NSXPC, affecting all Apple platforms. This vulnerability could have potentially allowed malicious apps to gain unauthorized access to system services or steal user data from certain third-party applications, particularly those with architectures similar to Telegram. Our proof-of-concept attack demonstrated how a malicious app could steal chat history (such as pictures) from Telegram and transfer it to a remote server. Upgrade all your Apple devices and stay safe! Source:
1:09

The CertiK Skyfall team identified and collaborated with Apple to fix a vulnerability (CVE-2024-27801) in the low-level implementation of NSXPC, affecting all Apple platforms. This vulnerability could have potentially allowed malicious apps to gain unauthorized access to system services or steal user data from certain third-party applications, particularly those with architectures similar to Telegram. Our proof-of-concept attack demonstrated how a malicious app could steal chat history (such as pictures) from Telegram and transfer it to a remote server. Upgrade all your Apple devices and stay safe! Source:

CertiK

341,467 Aufrufe • vor 2 Jahren

HelixDB () makes RAG and AI retrieval easier to build and manage with an ultra-performant, open source graph-vector database. Congrats on the launch, George and Xav! Check it out on GitHub:
0:42

HelixDB () makes RAG and AI retrieval easier to build and manage with an ultra-performant, open source graph-vector database. Congrats on the launch, George and Xav! Check it out on GitHub:

Y Combinator

67,242 Aufrufe • vor 1 Jahr