US top banks are scrambling to patch IT vulnerabilities flagged by Anthropic’s Mythos AI tool. The system reportedly finds a broad set of security gaps, prompting urgent repairs and software upgrades. Anthropic’s findings are also being shared with smaller banks, speeding the cycle of fixes—though the rapid changes could temporarily disrupt customer services.
The U.S. Cybersecurity agency CISA says the CopyFail bug is actively being leveraged in hacking campaigns and could endanger Linux-based servers and datacenters. Organizations running affected major Linux versions are urged to treat it as high risk, as the vulnerability appears to be in use in the wild rather than just a theoretical concern.
Your news, in seconds
Get the Beige app — every story in 60 words, updated hourly. Free on iOS & Android.
Web hosting companies are rushing to patch a newly highlighted cPanel vulnerability as attackers actively exploit it, according to reports. One security provider says hackers have been using the flaw for months, meaning countless websites may have been exposed long before defenses caught up. Hosts are now prioritizing urgent updates to stop ongoing intrusion attempts.
NIELIT Director Sheetal Chopra called AI-led discovery of long-standing banking vulnerabilities a “wake-up call” for US banks and for India and the rest of the world. The finding highlights how automation can uncover hidden weaknesses in financial systems, pushing regulators and banks to urgently reassess cybersecurity defenses and patch longstanding gaps before attacks scale.
A CrowdStrike-linked analysis of Operation Lunar Peek shows how CVSS scoring can fail in practice. Attackers chained two Palo Alto CVEs across 13,000 exposed management interfaces, ultimately gaining root. CVSS v4 and v3.1 assigned conflicting, “manageable” ratings that never flagged the combined kill chain, exposing gaps in how teams triage, patch, and report risk.
Swipe through stories, personalise your feed, and save articles for later — all on the app.
