Morning Overview on MSN

The AI-generated zero-day discovered by Google used clean 'textbook' Python code — a hallmark of large language model output

The exploit code was almost too neat. When Google’s Threat Intelligence Group flagged a previously unknown software vulnerability being actively exploited in the wild in May 2026, the analysts who examined the attack noticed something unusual: the Python script used to carry out the exploit was clean,
Cybernews

One tiny exploit gives full Linux access: all kernels since 2017 are vulnerable

The critical "Copy Fail" bug (CVE-2026-31431) affects all Linux kernels since 2017, allowing unprivileged local users to gain root privileges.
Hosted on MSN

Google confirms first AI-created zero-day exploit targeting 2FA

Google’s Threat Intelligence Group has confirmed finding what it believes is the first AI-created zero-day exploit, aimed at bypassing two-factor authentication in a widely used open-source web-based system administration tool. The Python-based exploit contained hallmarks of AI-generated code, such as overly explanatory comments, a fabricated severity score, and textbook formatting. The ...
Bleeping Computer

Exploit released for RCE flaw in popular ReportLab PDF library

A researcher has published a working exploit for a remote code execution (RCE) flaw impacting ReportLab Toolkit, a popular Python library used by numerous projects to generate PDF files from HTML input. The proof-of-concept (PoC) exploit for the flaw ...

US CISA adds ‘insane’ Linux Copy Fail flaw to watch list

Malicious actors with code execution capability may gain root access on Linux systems using as few as 10 lines of Python, according to a researcher.