Criminal hackers utilized artificial intelligence to identify a previously unknown software flaw, marking the first instance of AI being used in this manner. Google reported that this attempted cyberattack indicates potential future threats in cybersecurity.

Wiz Research identified a critical vulnerability (CVE-2026-3854) in GitHub's internal git infrastructure that allows authenticated users to execute arbitrary commands on backend servers with a single git push command. This vulnerability is notable as one of the first critical flaws found in closed-source binaries using AI.

AISLE has identified 38 critical vulnerabilities (CVEs) in healthcare software utilized by 100,000 medical providers. The rapid digitization of healthcare is outpacing the implementation of adequate security measures.

Cal.com is transitioning from open source to closed source to enhance customer data protection in response to AI-driven security threats. The Cal.diy platform will remain available as an open-source option for hobbyists.

Moltbook, a viral social network for AI agents, has a misconfigured Supabase database that exposes full read and write access to its data. This security flaw has led to the leak of 1.5 million API keys.

Over 175,000 misconfigured Ollama AI servers are publicly exposed without authentication, making them vulnerable to LLMjacking attacks. Attackers exploit these instances to generate spam and malware content, with the issue stemming from user misconfiguration that can be fixed by binding servers to localhost only.