The Cipher

Daily brief · Cyber · AI · Tech

Daily brief at 7am Melbourne. Unsubscribe any time.

← The Cipher

Thursday 30 April 2026

Claude Mythos Found 271 Firefox Zero-Days. Let That Sink In.

Anthropic's Claude Mythos AI model found 271 zero-days in Firefox — and that changes what "vulnerability research" means forever.

Lead story

Claude Mythos Found 271 Firefox Zero-Days. Let That Sink In.

The number is almost too large to process: 271 previously unknown, exploitable security vulnerabilities — all found in Firefox, all discovered by a single AI model, in a research collaboration between Mozilla and Anthropic. Bruce Schneier flagged it this week, and it's the kind of number that makes experienced security researchers do a double-take.

For context: a skilled human researcher finding a handful of zero-days in a mature, well-audited codebase like Firefox in a year would be considered exceptional work. Mozilla's earlier AI collaboration with Anthropic — using Claude Opus 4.6 — had already turned up 22 security-sensitive bugs, enough to prompt fixes shipped in Firefox 148. Then came Claude Mythos Preview, an early access model, and the numbers exploded.

What's actually happening here is that AI systems are getting good enough at code comprehension and reasoning to do the hard, tedious, expert work of vulnerability research at scale. This isn't AI writing better phishing emails. It's AI doing what previously required a team of elite reverse engineers working for months — and doing it faster, cheaper, and apparently more thoroughly.

The implications split in two directions, and neither is comfortable.

On the defensive side, this is legitimately great news. Mozilla found these bugs and can fix them before attackers do. That's the system working. Security teams at well-resourced organisations can now deploy AI-assisted fuzzing and static analysis to find their own flaws before adversaries do. Wiz used a similar AI-assisted reverse-engineering approach to uncover the critical GitHub RCE vulnerability (CVE-2026-3854) disclosed this week — a bug previously considered too costly to hunt manually.

On the offensive side, the same capability is available to anyone with access to a frontier model. If Anthropic's model can find 271 bugs in Firefox, what's stopping a well-funded threat actor from pointing equivalent tooling at critical infrastructure software, medical systems, or industrial control platforms? The answer, for now, is mostly cost and access — thin moats that are eroding quickly.

The LiteLLM story from this week is instructive as a near-term preview of that world. CVE-2026-42208, a critical SQL injection flaw in the popular open-source LLM gateway, was disclosed — and actively exploited — within 36 hours. Attackers are already moving at AI speed. Defenders need to as well.

For Australian organisations, the Firefox finding lands in a context where the ASD's Essential Eight and ACSC guidance both emphasise patching as a primary control. The Essential Eight's Patch Applications control exists precisely because browser vulnerabilities are a top initial-access vector. When a single AI run can surface 271 of them in one codebase, the patch cadence conversation changes — because the volume of disclosed CVEs is about to get much, much louder.

What to watch: Whether other browser vendors and major open-source projects announce similar AI-assisted audit programmes. If Mozilla is getting 271 bugs per AI run, the queue of critical patches heading toward users in 2026 could be unlike anything we've seen. That's ultimately good — but the transition period, where bugs are found faster than they can be fixed and communicated, is going to be messy.

Also today

DPRK's BlueNoroff Is Using Fake Zoom Calls and AI Avatars to Target Crypto Executives

North Korea's BlueNoroff group has evolved its social engineering playbook in a troubling direction. The threat actor is now using video recordings stolen from previous victims, combined with AI-generated avatars, to populate fake Zoom meetings and make them appear legitimate. Crypto executives are the primary targets, lured into downloading malware under the guise of a routine business call. The tactic effectively weaponises victims against the next target in the chain. Australian cryptocurrency firms and exchanges — a growing sector — should treat any unsolicited video meeting request with heightened scepticism, particularly those involving overseas counterparts.

Dark Reading

SAP npm Packages Hit in 'Mini Shai-Hulud' Supply Chain Attack

A coordinated supply chain campaign — dubbed 'mini Shai-Hulud' by researchers at Aikido Security, Wiz, Socket, and others — has compromised multiple SAP-related npm packages with credential-stealing malware. The attackers embedded malicious code into JavaScript packages used in SAP's cloud application ecosystem, meaning any developer who pulled a dependency update may have silently ingested an infostealer. SAP's software is widely deployed across Australian enterprise, government, and resources sectors, making this a relevant supply-chain risk for local security teams to assess. Check your dependency trees.

The Hacker News

AI Found 38 Vulnerabilities in OpenEMR, Including RCE and Database Compromise

Researchers using AI-assisted analysis uncovered 38 security flaws in OpenEMR, an open-source electronic health records platform used by more than 100,000 healthcare providers globally. The bugs range in severity from cross-site scripting to full remote code execution and database compromise — meaning patient records, prescriptions, and clinical data were potentially at risk. OpenEMR is used in smaller and regional healthcare settings that often lack dedicated security staff. With Australia's healthcare sector a perennial ransomware target, any EHR platform running OpenEMR warrants an urgent review against the patched versions.

Dark Reading

Apple Patches Bug That Let FBI Extract Deleted Signal Messages

Apple has quietly fixed a privacy vulnerability that allowed law enforcement — including the FBI — to recover deleted Signal messages from iPhones. The flaw was rooted in how iOS handled notification storage: incoming Signal messages were briefly cached by the system's notification service in a way that persisted even after users deleted them from the app. 404 Media's reporting on the technique prompted Apple to act. The fix is a reminder that end-to-end encryption protects messages in transit, but the operating system layer beneath it is a separate attack surface entirely — one that isn't always visible to users.

404 Media

Checkmarx Confirms Data Stolen in Supply Chain Attack That Also Targeted Bitwarden

Application security vendor Checkmarx has confirmed that attackers exfiltrated data from its GitHub environment as part of a broader supply chain campaign. The attackers published malicious code on 23 March and extracted data a week later, on 30 March. Bitwarden — the popular open-source password manager — was also singled out in the same campaign. The deliberate targeting of security vendors is notable: these organisations hold sensitive customer vulnerability data and credentials, making them high-value targets. If your organisation uses Checkmarx for code scanning, treat any shared credentials or API tokens as potentially compromised.

SecurityWeek

cPanel's Critical Auth Bypass: Update Your Hosting Servers Now

cPanel and its WebHost Manager (WHM) dashboard received an emergency out-of-band security update this week to address a critical authentication bypass affecting all supported versions. An attacker could exploit the flaw to gain full control panel access without any credentials — effectively owning every hosted website on the server. Fixed versions are 11.110.0.97, 11.118.0.63, 11.126.0.54, and 11.132.0.29. cPanel powers a large proportion of shared hosting infrastructure globally, including many Australian web hosts. If you or your clients run self-managed cPanel servers, this is a drop-everything patch.

Bleeping Computer

Silk Typhoon Hacker Extradited to US After Arrest in Italy

A man alleged to have worked as a hacker for China's Ministry of State Security — and linked to the Silk Typhoon threat group — has been extradited to the United States from Italy to face charges. Silk Typhoon is the group behind the high-profile breach of the US Treasury Department in late 2024 and a string of attacks on managed service providers and government networks. The extradition is a rare instance of a Chinese state-affiliated hacker facing Western judicial proceedings, and signals increased international cooperation in pursuing nation-state cybercriminals. If convicted, the individual faces decades in prison.

Graham Cluley / Bitdefender

Microsoft's Windows Zero-Day Patch Was Incomplete — and a Second Flaw Is Now Under Attack

Microsoft's fix for a Windows zero-day that Russian intelligence operatives had been actively exploiting has turned out to be incomplete, and a second, related Windows vulnerability is now also being targeted in the wild. CISA has added both — including a ConnectWise ScreenConnect path traversal flaw (CVE-2024-1708) — to its Known Exploited Vulnerabilities catalogue, ordering US federal agencies to patch by a firm deadline. The incomplete fix is a headache for defenders who thought they'd closed the hole. Australian government entities following the ACSC's patching guidance should treat both vulnerabilities as priority remediations.

The Register

OpenAI Publishes Five-Part Cybersecurity Action Plan

OpenAI has outlined what it's calling a cybersecurity agenda for the 'Intelligence Age', centred on five pillars: democratising AI-powered defence tools, hardening critical infrastructure, disrupting offensive AI use by threat actors, building security into its own models by design, and partnering with governments and researchers. The document is part policy commitment, part positioning — OpenAI is increasingly pitching itself as a defence-sector partner at a time when governments are deciding which AI companies get access to sensitive work. Whether the action plan translates into concrete capability for under-resourced defenders remains to be seen.

OpenAI Blog

Alphabet's Q1: Search Queries at an All-Time High, AI Driving the Growth

Google parent Alphabet reported a strong first quarter for 2026, with CEO Sundar Pichai declaring that Search queries hit an all-time high — up 19 per cent in revenue — driven partly by AI-enhanced search experiences. Google One and YouTube subscriptions added 25 million paid subscribers in the quarter, reaching 350 million total. The results reinforce that AI integration is translating into actual revenue growth for Google, not just hype. For context, Microsoft reported the same day: its cloud and productivity businesses climbed strongly, while Xbox hardware revenue slid 33 per cent — a division that matters considerably less than Azure.

The Verge

Musk v. Altman Trial: The Evidence Is Getting Interesting

The civil trial pitting Elon Musk against Sam Altman and OpenAI is now in full swing, and the exhibits are revealing. Early documents show Musk largely drafted OpenAI's founding mission statement and heavily shaped the lab's early structure. An Nvidia GPU supercomputer gifted by Jensen Huang to the fledgling organisation also features in the record. Musk took the stand as the first witness, portraying his involvement as altruistic — the same framing he's used in interviews for years, but now under oath. The trial could have significant consequences for OpenAI's planned transition to a for-profit structure.

The Verge

Sources consulted