From 30 items, 5 important content pieces were selected
Socket reports that PyPI package lightning versions 2.6.2 and 2.6.3 were compromised with malicious code. On import, the package reportedly downloaded and executed an obfuscated JavaScript payload that stole GitHub tokens, cloud credentials, and environment variables, then used the access to poison repositories and local npm packages. This is a serious supply-chain incident because lightning is a widely used deep-learning package, so the blast radius can extend to ML developers and their connected infrastructure. Stolen credentials and poisoned repositories can enable follow-on compromise across GitHub, cloud accounts, and JavaScript ecosystems. The reported behavior is similar to the Shai-Hulud worm pattern, with stolen permissions used for fake commits and lateral movement. The guidance in the report is to remove the malicious versions immediately, downgrade to 2.6.1, and rotate all affected keys.
telegram · zaihuapd · May 2, 00:36
Background: PyPI is the Python Package Index, the main registry for distributing Python libraries. A supply-chain attack on a package can affect anyone who installs or imports it, because malicious code runs in the developer or build environment. Credential theft is especially dangerous here because GitHub tokens and cloud keys can be reused to reach source repositories and deployed systems. The mention of npm matters because attackers sometimes pivot from Python tooling into JavaScript package ecosystems.
Tags: #supply chain security, #PyPI, #malware, #credential theft, #machine learning
Microsoft-backed Lib0xc is a new set of C standard-library-adjacent APIs designed for safer systems programming in C. The project says it uses GNUC extensions and C11 features, and its GitHub page describes it as a “safe(ish) C programming library” for making common C usage safer without fully changing the language. C remains foundational in systems software, but memory and bounds errors are a major source of vulnerabilities. A library that codifies safer patterns could reduce bugs for kernel, embedded, runtime, and infrastructure developers, while also influencing broader discussions about whether these APIs should eventually be standardized. The project explicitly relies on C11 with GNU extensions, and the search results note that clang is recommended for -fbounds-safety support. The repo also emphasizes that C cannot be made completely type- and bounds-safe at the language level, but its common usage can still be made much safer than it is today.
hackernews · wooster · May 1, 19:10
Background: C is widely used for low-level software because it is small, fast, and close to the hardware, but those same properties make it easy to write unsafe code. Standard-library-adjacent APIs are functions that behave like parts of the C library but are designed to be safer or more strongly specified. The discussion around Lib0xc also reflects a long-running debate in systems programming: whether safety improvements should live in external libraries or be added directly to C, C++, and POSIX standards.
Discussion: The discussion was broadly positive about the safety goal, with the author framing lib0xc as a way to encode decades of “cargo-culted” safe C patterns into first-class APIs. Several commenters argued that C, C++, and POSIX should standardize safer APIs and deprecate unsafe ones, while others vented frustration with C’s long tail of manual safety work; one commenter noted the name can be confusing because it resembles a different project.
Tags: #C programming, #systems programming, #memory safety, #standard library, #API design
The UK’s AI Security Institute evaluated OpenAI’s GPT-5.5 on cyber capabilities and found it comparable to Claude Mythos for vulnerability discovery. The report also notes that GPT-5.5 is generally available now, unlike Mythos at the time of its earlier evaluation. This suggests advanced general-purpose models are becoming similarly capable at security-relevant tasks, not just specialized cyber systems. That matters for software defenders, red-teamers, and AI safety teams because stronger vulnerability-finding ability can help both offense and defense. AISI says these were controlled capability evaluations, so the results do not necessarily reflect what an ordinary public user of GPT-5.5 can access. The comparison is specifically about finding security vulnerabilities, and the headline takeaway is that the result looks like a broader trend in AI capability rather than a one-off breakthrough limited to Mythos.
rss · Simon Willison · Apr 30, 23:03
Background: The UK AI Security Institute, or AISI, evaluates AI systems for security and safety risks, including how capable they are in cyber-related tasks. Vulnerability discovery is the process of finding flaws in software or systems that could be exploited by attackers. Claude Mythos had previously drawn attention for its reported cybersecurity performance, so GPT-5.5 is being measured against an already prominent benchmark.
Tags: #AI security, #OpenAI, #cybersecurity, #LLMs, #model evaluation
OpenAI is reportedly preparing to launch GPT-5.5-Cyber, a cybersecurity-focused model built on GPT-5.5, in the coming days. The model will initially be limited to vetted “trusted cyber defenders” rather than the general public. This suggests OpenAI is moving beyond general-purpose models toward specialized systems for defensive cybersecurity work. If successful, it could affect how security teams analyze threats and strengthen defenses, while also reinforcing tighter access controls for powerful dual-use AI. Sam Altman said OpenAI is working with governments and the industry ecosystem to define trusted access mechanisms. The reporting also places this approach in context with OpenAI’s earlier staged rollout for GPT-Rosalind and notes that Anthropic’s Mythos model has similarly been restricted to specific entities.
telegram · zaihuapd · May 1, 07:01
Background: Cybersecurity-focused AI models are designed to help defensive teams with tasks such as analyzing threats, improving protections, and supporting incident response. Because these systems can also be misused, companies sometimes release them only to verified organizations rather than broadly to the public. “Trusted access” is a policy mechanism for limiting who can use more permissive or higher-risk models.
Tags: #OpenAI, #cybersecurity, #AI models, #model release, #defensive security
Anthropic has proposed expanding access to its Mythos model from about 50 entities to roughly 120, but the White House is opposing the plan on national security grounds. The administration also worries that Anthropic may not have enough compute capacity to serve the added users while meeting government demand. This is a high-stakes AI governance dispute because Mythos is described as capable of finding and exploiting software vulnerabilities, which raises cybersecurity and misuse risks. The case could affect how advanced models are distributed to industry and government users, especially when public-interest access competes with security concerns. The model had previously been limited to critical infrastructure operators and some government agencies, and the Trump administration is trying to broaden government access at the same time. The situation is further complicated by tensions over military AI use and two ongoing lawsuits between the parties.
telegram · zaihuapd · May 2, 01:48
Background: AI model access policies determine who can use a model and under what conditions, which matters when the model has security-sensitive capabilities. In cybersecurity, models that can reason about code may help defenders, but they can also be used to identify and exploit vulnerabilities. Governments often weigh broader access against national security, compute allocation, and oversight concerns.
Tags: #AI governance, #national security, #model safety, #cybersecurity, #Anthropic