Tag: openai
-
OpenAI’s Chronicle feature lets Codex read your screen, raising privacy concerns
OpenAI’s Chronicle is a feature designed to help Codex, an AI-powered coding assistant, better understand what users are working on by capturing context directly from their … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/21/openai-chronicle-codex-screen-context-memories/
-
Claude Mythos ist der Hype gerechtfertigt?
Tags: ai, bug, cve, cybersecurity, data, exploit, linux, openai, sans, technology, update, vulnerabilityClaude Mythos wird derzeit von ausgesuchten Organisationen getestet in erster Linie großen Tech-Konzernen aus den USA.Anthropic | ScreenshotDer Hype um Anthropics Security-Modell Mythos bekommt erste Risse: Während KI-Konkurrent OpenAI plant, mit einem eigenen Cybersecurity-fokussierten KI-Modell ‘entgegenzuwirken”, stellen die Sicherheitsexperten von VulnCheck in einer aktuellen Untersuchung die praktischen Auswirkungen von Claude Mythos, respektive ‘Project Glasswing” in…
-
iTerm2 Flaw Turns SSH Escape Sequences Into Arbitrary Code Execution
In the cybersecurity community, we often assume that simply reading a text file using a command like cat is a perfectly safe operation. However, security researchers have recently demonstrated that doing so inside the popular iTerm2 macOS terminal emulator can cross the line into arbitrary code execution. This alarming discovery, made in partnership with OpenAI, highlights a…
-
New IBM Security Services Aim to Counter Risks of Frontier AI Models
IBM Consulting is using AI agents in its new services to help organizations protect themselves against the growing security threats advanced AI foundation models like Anthropic’s Mythos Preview and OpenAI’s GPT-5.4-Cyber pose. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/new-ibm-security-services-aim-to-counter-risks-of-frontier-ai-models/
-
New IBM Security Services Aim to Counter Security Risks of AI Frontier Models
IBM Consulting is using AI agents in its new services to help organizations protect themselves against the growing security threats advanced AI foundation models like Anthropic’s Mythos Preview and OpenAI’s GPT-5.4-Cyber pose. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/new-ibm-security-services-aim-to-counter-security-risks-of-ai-frontier-models/
-
Anthropic-OpenAI Race Obscures The Real Cybersecurity Breakdown: Analysis
As Anthropic and OpenAI pursue competing initiatives over vulnerability discovery, the question of who will win is the least of security teams’ concerns. First seen on crn.com Jump to article: www.crn.com/news/security/2026/anthropic-openai-race-obscures-the-real-cybersecurity-breakdown-analysis
-
OpenAI Extends GPT-5.4-Cyber Access to Trusted Organizations Worldwide
OpenAI has announced the expansion of its >>Trusted Access for Cyber<< program, granting worldwide security organizations access to its advanced GPT-5.4-Cyber model. The initiative operates on a foundational premise: cutting-edge cyber capabilities must reach network defenders on a broad scale while maintaining strict trust, validation, and safety safeguards. By sharing these tools with a diverse…
-
Codex can now operate between apps. Where are the boundaries?
OpenAI is rolling out a major update to the Codex desktop app for users signed in with ChatGPT. Personalization features, including context-aware suggestions and memory, will … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/17/openai-codex-desktop-update-macos/
-
RCE by design: MCP architectural choice haunts AI agent ecosystem
sh, bash, powershell, curl, rm, and other high-risk binaries, they added.The core issue is that there’s currently no check in place to verify that a STDIO command is intended to initialize an MCP server rather than perform a malicious task. Furthermore, the researchers observed that even if the sent command fails to start the server,…
-
OpenAI expands Trusted Access for Cyber program with new GPT 5.4 Cyber model
A new cybersecurity-focused variant of ChatGPT and an expanded access program put OpenAI in direct competition with Anthropic’s Project Glasswing, and raises fresh questions about who gets to wield the most powerful security AI. First seen on cyberscoop.com Jump to article: cyberscoop.com/openai-expands-trusted-access-for-cyber-to-thousands-for-cybersecurity/
-
Trusted Access for Cyber – GPT 5.4 Cyber ist OpenAIs Reaktion auf Claude Mythos
OpenAI hat das ‘Trusted-Access-for-Cyber”-Programm (TAC) ausgebaut, das verifizierten Experten Zugriff auf neue Funktionen bietet. First seen on computerbase.de Jump to article: www.computerbase.de/news/apps/trusted-access-for-cyber-gpt-5-4-cyber-ist-openais-reaktion-auf-claude-mythos.96904
-
OpenAI Launches GPT-5.4-Cyber to Boost Defensive Cybersecurity
OpenAI unveils GPT-5.4-Cyber, a cybersecurity-focused model built to help defenders analyze malware and fix software bugs. The company is also expanding its Trusted Access for Cyber (TAC) program to thousands of verified experts. First seen on hackread.com Jump to article: hackread.com/openai-gpt-5-4-cyber-boost-defensive-cybersecurity/
-
OpenAI Courts Banks in Trusted Access for Cyber Partner Push
Bank of America, Citi and Goldman Anchor Partner Cohort for OpenAI’s GPT-5.4-Cyber. OpenAI’s Trusted Access for Cyber program prioritizes financial institutions to drive adoption of GPT-5.4-Cyber in regulated environments, highlighting a split with Anthropic’s developer-centric, tech-heavy partnerships and raising questions about partnership value and data-sharing models. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/openai-courts-banks-in-trusted-access-for-cyber-partner-push-a-31447
-
OpenAI Courts Banks in Trusted Access for Cyber Partner Push
Bank of America, Citi and Goldman Anchor Partner Cohort for OpenAI’s GPT-5.4-Cyber. OpenAI’s Trusted Access for Cyber program prioritizes financial institutions to drive adoption of GPT-5.4-Cyber in regulated environments, highlighting a split with Anthropic’s developer-centric, tech-heavy partnerships and raising questions about partnership value and data-sharing models. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/openai-courts-banks-in-trusted-access-for-cyber-partner-push-a-31447
-
OpenAI updates Agents SDK, adds sandbox for safer code execution
OpenAI’s updated Agents SDK helps developers build agents that inspect files, run commands, edit code, and handle tasks within controlled sandbox environments. The update … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/16/openai-agents-sdk-harness-and-sandbox-update/
-
In the Wake of Anthropic’s Mythos, OpenAI Has a New Cybersecurity Model”, and Strategy
OpenAI says its safeguards “sufficiently reduce cyber risk” for now, while GPT-5.4-Cyber is a new cybersecurity-focused model. First seen on wired.com Jump to article: www.wired.com/story/in-the-wake-of-anthropics-mythos-openai-has-a-new-cybersecurity-model-and-strategy/
-
OpenAI’s Mac apps need updates thanks to the Axios hack
The company said a developer tool automatically retrieved a malicious version of the popular open-source library, but insists the integrity of its systems and software were not impacted. First seen on cyberscoop.com Jump to article: cyberscoop.com/openai-axios-supply-chain-attack/
-
OpenAI’s Mac apps needs an update thanks to the Axios hack
The company said a developer tool automatically retrieved a malicious version of the popular open-source library, but insists the integrity of its systems and software were not impacted. First seen on cyberscoop.com Jump to article: cyberscoop.com/openai-axios-supply-chain-attack/
-
OpenAI Rotates macOS Certificates Following Axios Supply Chain Breach
OpenAI rotates macOS certificates after downloading a compromised Axios version, urging users to update apps before revoked certificates are blocked in May 2026. First seen on hackread.com Jump to article: hackread.com/openai-macos-certificates-axios-supply-chain-breach/
-
OpenAI rotates macOS certs after Axios attack hit code-signing workflow
OpenAI is rotating potentially exposed macOS code-signing certificates after a GitHub Actions workflow executed a malicious Axios package during a recent supply chain attack. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/openai-rotates-macos-certs-after-axios-attack-hit-code-signing-workflow/
-
OpenAI Revokes macOS App Certificate After Malicious Axios Supply Chain Incident
OpenAI revealed a GitHub Actions workflow used to sign its macOS apps, which downloaded the malicious Axios library on March 31, but noted that no user data or internal system was compromised.”Out of an abundance of caution, we are taking steps to protect the process that certifies our macOS applications are legitimate OpenAI apps,” OpenAI…
-
ChatGPT rolls out new $100 Pro subscription to challenge Claude
OpenAI has rolled out a new Pro subscription that costs $100 and is in line with Claude’s pricing, which also has a $100 subscription, in addition to the $200 Max monthly plan. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/artificial-intelligence/chatgpt-rolls-out-new-100-pro-subscription-to-challenge-claude/
-
Florida investigates OpenAI for role ChatGPT may have played in deadly shooting
Last week, the family of one of two victims in the attack announced it plans to sue OpenAI because the gunman allegedly constantly communicated with ChatGPT in the days leading to the shootings. First seen on therecord.media Jump to article: therecord.media/florida-investigates-openai-chatgpt-deadly-shooting
-
OpenAI puts Stargate UK on ice, blames energy costs and red tape
Sam Altman’s datacenter dreams hit a wall of watts and wonkery, cooling Britain’s AI ambitions First seen on theregister.com Jump to article: www.theregister.com/2026/04/09/openai_puts_stargate_uk_on/
-
What to Know About CyberAv3ngers: The IRGC-Linked Group Targeting Critical Infrastructure
Tags: access, advisory, ai, attack, authentication, automation, backup, cctv, chatgpt, cisa, communications, compliance, control, credentials, crypto, cve, cyber, cybersecurity, data, data-breach, defense, detection, dns, email, exploit, finance, firewall, flaw, government, group, healthcare, infrastructure, intelligence, international, Internet, iot, iran, kev, leak, linux, malicious, malware, mitigation, mitre, monitoring, network, office, openai, password, radius, resilience, risk, router, service, siem, software, strategy, switch, technology, threat, tool, update, vpn, vulnerability, vulnerability-managementAn Iran-affiliated threat group has evolved from defacing water utility displays to deploying custom ICS malware and exploiting Rockwell Automation PLCs across multiple U.S. critical infrastructure sectors. Key takeaways: CyberAv3ngers is a state-directed threat group operating under Iran’s IRGC Cyber-Electronic Command. The U.S. Treasury sanctioned six named officials in February 2024 and the State Department…
-
OpenAI Readies Rollout of New Cyber Model as Industry Shifts to Defense
OpenAI is finalizing a cybersecurity product slated for a restricted release to select partners. The new model, as reported by Axios, could signal growing anxiety among developers that their latest creations may be too dangerous for the public. The shift comes as artificial intelligence (AI) capabilities reach a critical threshold in autonomous hacking and reasoning……
-
OpenAI opens applications for an external AI safety research fellowship
OpenAI is accepting applications for a paid fellowship program that will fund external researchers to work on safety and alignment questions related to advanced AI systems. … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/07/openai-safety-fellowship-applications/
-
The Attack Helix: Praetorian Guard’s AI Architecture for Offensive Security
The Kill Chain models how an attack succeeds. The Attack Helix models how the offensive baseline improves. Tipping Points One person. Two AI subscriptions. Ten government agencies. 150 gigabytes of sovereign data. In December 2025, a single unidentified operator used Anthropic’s Claude and OpenAI’s ChatGPT to breach ten Mexican government agencies and a financial institution….…
-
prompted 2026 Code Is Free: Securing Software In The Agentic Future
Author, Creator & Presenter: Paul McMillan, Security Engineer, OpenAI & Ryan Lopopolo, Member of Technical Staff, OpenAI Our thanks to [un]prompted for publishing their Creators, Authors and Presenter’s outstanding [un]prompted 2026 AI Security Practitioner content on the Organizations’) YouTube Channel. Permalink First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/unprompted-2026-code-is-free-securing-software-in-the-agentic-future/