All topics
Dennis sits down with Tom Ptacek of Fly.io, a veteran security researcher, founder, and observer of the vulnerability landscape, to talk about the recent wave of AI-assisted vulnerability discovery and exploit development, specifically from the use of frontier models such as Claude Mythos. Tom has strong opinions on what’s coming and how human researchers and […]
Claude Mythos Preview is making huge waves in the world of vulnerability discovery and exploit development. And it’s not even publicly available! We asked hacker and Luta Security CEO Katie Moussouris and AI and machine learning security pioneer Gary McGraw what AI-enabled bug hunting means for researchers, defenders, and enterprise security teams.
The company published an advisory on Saturday and urged all customers who are running affected versions of the software to install the hotfix as quickly as possible. The bug affects versions 7.4.5 and 7.4.6 of FortiClient EMS.
The bug is a command injection issue and lies in the way that Codex processed GitHub branch names during the execution of tasks.
The process of developing and deploying exploits is a complex and controversial one and it’s often a black box to outside observers. To help shine a light on how this all works, Caitlin Condon of VulnCheck joins Dennis Fisher for a deep dive into the zero day exploit landscape, what goes into exploit development, and […]
Out of 42 unique zero days tracked by Google in 2025, 18 were attributed to CSVs, while 15 were linked to state-sponsored espionage groups.
