… Per Ars Technica 's interview with Lyra Rebane, the researcher who discovered the exploit , using the exploit code published by Google would be "pretty easy" even though additional work is required to scale it for botnet purposes. …
… By weaponizing the model to generate a Python-based exploit for a two-factor authentication bypass, the actors demonstrated that AI excels at spotting hard-coded trust assumptions that traditional automated tools might miss. …
… In the meantime, Anthropic has launched Claude Security, a public beta for Enterprise customers using Claude Opus 4.7 to scan codebases and generate proposed patches, with 2,100 vulnerabilities patched in its first three weeks. …
… However, they're still lucrative with Google paying up to $250,000 for full-chain browser process exploits on the latest operating systems and hardware, along with up to a $250,128 bonus for a report that successfully exploits an allocation it believes is protected by MiraclePtr. …