{"id":5229,"date":"2026-05-17T17:45:28","date_gmt":"2026-05-17T22:45:28","guid":{"rendered":"https:\/\/www.cybersecurityinstitute.com\/blog\/?p=5229"},"modified":"2026-05-25T17:48:58","modified_gmt":"2026-05-25T22:48:58","slug":"ai-ml-security-brief-may-17-2026","status":"publish","type":"post","link":"https:\/\/www.cybersecurityinstitute.com\/blog\/?p=5229","title":{"rendered":"AI-ML Security Brief \u2014 May 17, 2026"},"content":{"rendered":"<style>\n.single .entry-title,\n.single .entry-header .entry-title,\n.single .post-title,\n.single header.entry-header h1,\n.single h1.entry-title,\n.single .page-title,\n.post-template-default h1.entry-title,\n.post-template-default .entry-header,\narticle .entry-header,\narticle .entry-title { display: none !important; }\n.single .entry-header { margin: 0 !important; padding: 0 !important; }\n.single .entry-content { margin-top: 0 !important; padding-top: 0 !important; }\n<\/style>\n<table role=\"presentation\" width=\"100%\" cellpadding=\"0\" cellspacing=\"0\" border=\"0\" style=\"background-color:#f4f5f7;\">\n<tr>\n<td align=\"center\" style=\"padding:24px 12px;\">\n<table role=\"presentation\" width=\"680\" cellpadding=\"0\" cellspacing=\"0\" border=\"0\" style=\"max-width:680px;width:100%;background-color:#ffffff;border-radius:8px;overflow:hidden;box-shadow:0 1px 3px rgba(0,0,0,0.08);\">\n<tr>\n<td style=\"background-color:#581c87;background:linear-gradient(135deg,#581c87 0%,#9333ea 100%);padding:32px 28px 24px;color:#ffffff;\">\n<div style=\"font-size:12px;letter-spacing:2px;text-transform:uppercase;opacity:0.75;margin-bottom:8px;color:#ffffff;\">AI-ML Security Bulletin \u00b7 Issue May 17, 2026<\/div>\n<div style=\"margin:0;font-size:28px;line-height:1.2;font-weight:700;color:#ffffff !important;mso-line-height-rule:exactly;\">The AI-ML Brief<\/div>\n<p style=\"margin:8px 0 0;font-size:14px;opacity:0.85;color:#ffffff;\">AI in security \u00b7 AI for security \u00b7 agentic AI in operations<\/p>\n<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:28px 28px 4px;\">\n<h2 style=\"margin:0 0 12px;font-size:18px;color:#0f172a;border-bottom:2px solid #9333ea;padding-bottom:6px;\">This week at a glance<\/h2>\n<p style=\"margin:0 0 12px;font-size:15px;color:#374151;\">The week AI crossed into operational offense <em>and<\/em> operational defense. Google&#8217;s TIG attributed the first <strong>in-the-wild zero-day generated by an AI<\/strong> (a 2FA bypass) to a known cybercrime group. OpenAI launched <strong>Daybreak<\/strong> \u2014 a GPT-5.5-based defensive program with Cloudflare, Cisco, CrowdStrike, Oracle, and Zscaler as launch partners \u2014 squarely against Anthropic&#8217;s Project Glasswing. Microsoft revealed <strong>MDASH<\/strong>, an agentic vuln-discovery system that autonomously found 16 of the bugs fixed in Patch Tuesday and scored 88.45% on the CyberGym benchmark. Funding stayed hot: Exaforce closed $125M Series B; Akamai announced intent to acquire LayerX for ~$205M; White Circle raised $11M for an AI control platform; Grego AI debuted claiming a record $250K bounty for an AI-found exploit.<\/p>\n<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:18px 28px 4px;\">\n<h2 style=\"margin:0 0 4px;font-size:20px;color:#0f172a;\">Entity graph &mdash; vendors, products, frontier labs, and how they cross-correlate<\/h2>\n<div style=\"height:3px;width:48px;background-color:#9333ea;margin-bottom:14px;\"><\/div>\n<p style=\"margin:0 0 8px;font-size:11px;color:#64748b;\">Every named entity extracted from this week&#8217;s 22 articles, with edges showing the offensive AI \/ defensive AI \/ capital web.<\/p>\n<div style=\"background-color:#ffffff;border:1px solid #e2e8f0;border-radius:8px;padding:14px;\">\n<img decoding=\"async\" src=\"https:\/\/www.cybersecurityinstitute.com\/blog\/wp-content\/uploads\/2026\/05\/topic-map-ai-ml-2026-05-17-2.png\" alt=\"Topic map for ai ml\" style=\"width:100%;max-width:880px;height:auto;display:block;margin:0 auto;\" \/>\n<\/div>\n<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:24px 28px 4px;\">\n<h2 style=\"margin:0 0 4px;font-size:20px;color:#0f172a;\">Article index<\/h2>\n<div style=\"height:3px;width:48px;background-color:#9333ea;margin-bottom:14px;\"><\/div>\n<h3 style=\"margin:14px 0 8px;font-size:15px;color:#dc2626;text-transform:uppercase;letter-spacing:1px;\">Offensive AI \u2014 first in-the-wild AI-generated zero-day<\/h3>\n<table role=\"presentation\" width=\"100%\" cellpadding=\"0\" cellspacing=\"0\" border=\"0\" style=\"font-size:13px;border-collapse:collapse;\">\n<tr style=\"background-color:#f8fafc;\">\n<th align=\"left\" style=\"padding:8px 6px;border-bottom:1px solid #e2e8f0;color:#475569;font-weight:600;width:55%;\">Article<\/th>\n<th align=\"left\" style=\"padding:8px 6px;border-bottom:1px solid #e2e8f0;color:#475569;font-weight:600;width:30%;\">Source<\/th>\n<th align=\"left\" style=\"padding:8px 6px;border-bottom:1px solid #e2e8f0;color:#475569;font-weight:600;width:15%;\">Published<\/th>\n<\/tr>\n<tr>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;\"><a href=\"https:\/\/www.securityweek.com\/google-detects-first-ai-generated-zero-day-exploit\/\" style=\"color:#1d4ed8;text-decoration:none;\">Google Detects First AI-Generated Zero-Day Exploit<\/a><\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">SecurityWeek<\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">May 11, 2026<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;\"><a href=\"https:\/\/www.cnbc.com\/2026\/05\/11\/google-thwarts-effort-hacker-group-use-ai-mass-exploitation-event.html\" style=\"color:#1d4ed8;text-decoration:none;\">Google says it likely thwarted effort by hacker group to use AI for &#8216;mass exploitation event&#8217;<\/a><\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">CNBC<\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">May 11, 2026<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;\"><a href=\"https:\/\/thehackernews.com\/2026\/05\/hackers-used-ai-to-develop-first-known.html\" style=\"color:#1d4ed8;text-decoration:none;\">Hackers Used AI to Develop First Known Zero-Day 2FA Bypass for Mass Exploitation<\/a><\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">The Hacker News<\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">May 11, 2026<\/td>\n<\/tr>\n<\/table>\n<h3 style=\"margin:22px 0 8px;font-size:15px;color:#16a34a;text-transform:uppercase;letter-spacing:1px;\">Defensive AI \u2014 OpenAI Daybreak and Microsoft MDASH<\/h3>\n<table role=\"presentation\" width=\"100%\" cellpadding=\"0\" cellspacing=\"0\" border=\"0\" style=\"font-size:13px;border-collapse:collapse;\">\n<tr style=\"background-color:#f8fafc;\">\n<th align=\"left\" style=\"padding:8px 6px;border-bottom:1px solid #e2e8f0;color:#475569;font-weight:600;width:55%;\">Article<\/th>\n<th align=\"left\" style=\"padding:8px 6px;border-bottom:1px solid #e2e8f0;color:#475569;font-weight:600;width:30%;\">Source<\/th>\n<th align=\"left\" style=\"padding:8px 6px;border-bottom:1px solid #e2e8f0;color:#475569;font-weight:600;width:15%;\">Published<\/th>\n<\/tr>\n<tr>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;\"><a href=\"https:\/\/thehackernews.com\/2026\/05\/openai-launches-daybreak-for-ai-powered.html\" style=\"color:#1d4ed8;text-decoration:none;\">OpenAI Launches Daybreak for AI-Powered Vulnerability Detection and Patch Validation<\/a><\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">The Hacker News<\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">May 11, 2026<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;\"><a href=\"https:\/\/www.macrumors.com\/2026\/05\/11\/openai-launches-daybreak\/\" style=\"color:#1d4ed8;text-decoration:none;\">OpenAI&#8217;s New Daybreak Platform Uses GPT-5.5 to Find Software Vulnerabilities<\/a><\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">MacRumors<\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">May 11, 2026<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;\"><a href=\"https:\/\/www.ciodive.com\/news\/OpenAI-Daybreak-cyber-threats\/820036\/\" style=\"color:#1d4ed8;text-decoration:none;\">OpenAI launches Daybreak to combat cyber threats<\/a><\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">CIO Dive<\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">May 11&ndash;12, 2026<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;\"><a href=\"https:\/\/www.scworld.com\/news\/openai-daybreak-joins-growing-movement-of-ai-driven-vulnerability-discovery\" style=\"color:#1d4ed8;text-decoration:none;\">OpenAI Daybreak joins growing movement of AI-driven vulnerability discovery<\/a><\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">SC Media<\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">May 11&ndash;12, 2026<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;\"><a href=\"https:\/\/gizmodo.com\/daybreak-openais-answer-to-anthropics-project-glasswing-has-arrived-2000757349\" style=\"color:#1d4ed8;text-decoration:none;\">&#8216;Daybreak&#8217;: OpenAI&#8217;s Answer to Anthropic&#8217;s Project Glasswing Has Arrived<\/a><\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">Gizmodo<\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">May 11, 2026<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;\"><a href=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2026\/05\/12\/defense-at-ai-speed-microsofts-new-multi-model-agentic-security-system-tops-leading-industry-benchmark\/\" style=\"color:#1d4ed8;text-decoration:none;\">Defense at AI speed: Microsoft&#8217;s new multi-model agentic security system tops leading industry benchmark<\/a><\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">Microsoft Security Blog<\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">May 12, 2026<\/td>\n<\/tr>\n<\/table>\n<h3 style=\"margin:22px 0 8px;font-size:15px;color:#d97706;text-transform:uppercase;letter-spacing:1px;\">AI security capital, M&amp;A, and product launches<\/h3>\n<table role=\"presentation\" width=\"100%\" cellpadding=\"0\" cellspacing=\"0\" border=\"0\" style=\"font-size:13px;border-collapse:collapse;\">\n<tr style=\"background-color:#f8fafc;\">\n<th align=\"left\" style=\"padding:8px 6px;border-bottom:1px solid #e2e8f0;color:#475569;font-weight:600;width:55%;\">Article<\/th>\n<th align=\"left\" style=\"padding:8px 6px;border-bottom:1px solid #e2e8f0;color:#475569;font-weight:600;width:30%;\">Source<\/th>\n<th align=\"left\" style=\"padding:8px 6px;border-bottom:1px solid #e2e8f0;color:#475569;font-weight:600;width:15%;\">Published<\/th>\n<\/tr>\n<tr>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;\"><a href=\"https:\/\/techcrunch.com\/2026\/05\/12\/exaforce-raises-125m-series-b-to-build-ai-for-catching-and-stopping-cyberattacks-as-they-happen\/\" style=\"color:#1d4ed8;text-decoration:none;\">Exaforce raises $125M Series B to build AI for catching and stopping cyberattacks as they happen<\/a><\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">TechCrunch<\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">May 12, 2026<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;\"><a href=\"https:\/\/www.akamai.com\/newsroom\/press-release\/akamai-technologies-announces-intent-to-acquire-layerx-advancing-its-workforce-security-strategy-with-ai-usage-control\" style=\"color:#1d4ed8;text-decoration:none;\">Akamai announces intent to acquire LayerX, advancing workforce security with AI usage control (~$205M)<\/a><\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">Akamai<\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">May 14, 2026<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;\"><a href=\"https:\/\/www.securityweek.com\/white-circle-raises-11-million-for-ai-control-platform\/\" style=\"color:#1d4ed8;text-decoration:none;\">White Circle Raises $11 Million for AI Control Platform<\/a><\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">SecurityWeek<\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">May 13, 2026<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;\"><a href=\"https:\/\/siliconangle.com\/2026\/05\/12\/ai-security-startup-grego-ai-debuts-claims-record-250000-bounty-ai-found-exploit\/\" style=\"color:#1d4ed8;text-decoration:none;\">AI security startup Grego AI debuts, claims record $250K bounty for AI-found exploit<\/a><\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">SiliconANGLE<\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">May 12, 2026<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;\"><a href=\"https:\/\/www.paloaltonetworks.com\/company\/press\/2026\/palo-alto-networks-introduces-idira--the-next-generation-identity-security-platform-built-for-the-ai-enterprise\" style=\"color:#1d4ed8;text-decoration:none;\">Palo Alto Networks Introduces Idira: Identity Security Platform for the AI Enterprise<\/a><\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">Palo Alto Networks<\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">May 12, 2026<\/td>\n<\/tr>\n<\/table>\n<h3 style=\"margin:22px 0 8px;font-size:15px;color:#475569;text-transform:uppercase;letter-spacing:1px;\">Foundational reading <span style=\"font-weight:400;text-transform:none;letter-spacing:0;color:#9ca3af;font-size:11px;\">(refreshed weekly)<\/span><\/h3>\n<table role=\"presentation\" width=\"100%\" cellpadding=\"0\" cellspacing=\"0\" border=\"0\" style=\"font-size:13px;border-collapse:collapse;\">\n<tr style=\"background-color:#f8fafc;\">\n<th align=\"left\" style=\"padding:8px 6px;border-bottom:1px solid #e2e8f0;color:#475569;font-weight:600;width:55%;\">Article<\/th>\n<th align=\"left\" style=\"padding:8px 6px;border-bottom:1px solid #e2e8f0;color:#475569;font-weight:600;width:30%;\">Source<\/th>\n<th align=\"left\" style=\"padding:8px 6px;border-bottom:1px solid #e2e8f0;color:#475569;font-weight:600;width:15%;\">Published<\/th>\n<\/tr>\n<tr>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;\"><a href=\"https:\/\/www.csoonline.com\/article\/4158117\/anthropics-mythos-signals-a-structural-cybersecurity-shift.html\" style=\"color:#1d4ed8;text-decoration:none;\">Anthropic&#8217;s Mythos signals a structural cybersecurity shift<\/a><\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">CSO Online<\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">2026<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;\"><a href=\"https:\/\/www.darkreading.com\/cybersecurity-operations\/anthropic-mythos-cyber-what-comes-next\" style=\"color:#1d4ed8;text-decoration:none;\">Anthropic&#8217;s Mythos Has Landed: Here&#8217;s What Comes Next for Cyber<\/a><\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">Dark Reading<\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">2026<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;\"><a href=\"https:\/\/cloud.google.com\/blog\/topics\/threat-intelligence\/m-trends-2026\" style=\"color:#1d4ed8;text-decoration:none;\">M-Trends 2026: AI-augmented threat actors and 22-second intervention windows<\/a><\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">Google Cloud \/ Mandiant<\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">March 2026<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;\"><a href=\"https:\/\/www.crowdstrike.com\/en-us\/blog\/crowdstrike-2026-global-threat-report-findings\/\" style=\"color:#1d4ed8;text-decoration:none;\">CrowdStrike 2026 Global Threat Report: Evasive Adversary Wields AI<\/a><\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">CrowdStrike<\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">2026<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;\"><a href=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2026\/03\/20\/secure-agentic-ai-end-to-end\/\" style=\"color:#1d4ed8;text-decoration:none;\">Secure agentic AI end-to-end<\/a><\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">Microsoft Security Blog<\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">March 20, 2026<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;\"><a href=\"https:\/\/newsroom.cisco.com\/c\/r\/newsroom\/en\/us\/a\/y2026\/m03\/cisco-reimagines-security-for-the-agentic-workforce.html\" style=\"color:#1d4ed8;text-decoration:none;\">Cisco Reimagines Security for the Agentic Workforce<\/a><\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">Cisco<\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">March 2026<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;\"><a href=\"https:\/\/cybermagazine.com\/news\/agentic-ai-defence-with-google-cloud-securitys-cyber-tools\" style=\"color:#1d4ed8;text-decoration:none;\">Cloud Next 2026: Agentic AI Defence with Google Cloud and Wiz<\/a><\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">Cyber Magazine<\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">April 2026<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;\"><a href=\"https:\/\/www.cisa.gov\/resources-tools\/resources\/careful-adoption-agentic-ai-services\" style=\"color:#1d4ed8;text-decoration:none;\">Careful Adoption of Agentic AI Services (CISA guidance)<\/a><\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">CISA<\/td>\n<td style=\"padding:8px 6px;border-bottom:1px solid #f1f5f9;color:#475569;\">April 30, 2026<\/td>\n<\/tr>\n<\/table>\n<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:24px 28px 4px;\">\n<h2 style=\"margin:0 0 4px;font-size:20px;color:#0f172a;\">Detailed write-ups<\/h2>\n<div style=\"height:3px;width:48px;background-color:#9333ea;margin-bottom:14px;\"><\/div>\n<h3 style=\"margin:0 0 6px;font-size:16px;color:#111827;\">Google attributes the first in-the-wild AI-generated zero-day (May 11)<\/h3>\n<p style=\"margin:0 0 6px;font-size:14px;color:#374151;\">Google&rsquo;s Threat Intelligence Group disclosed that a prominent cybercrime group used an AI model to discover and weaponize a zero-day that bypasses two-factor authentication. China- and North Korea-linked actors are deploying agentic offensive tools including Strix and Hexstrike. The 90-day disclosure-to-patch model now assumes adversaries can compress that window dramatically.<\/p>\n<p style=\"margin:0 0 18px;font-size:12.5px;color:#475569;\">Sources: <a href=\"https:\/\/www.securityweek.com\/google-detects-first-ai-generated-zero-day-exploit\/\" style=\"color:#1d4ed8;text-decoration:none;\">SecurityWeek<\/a> &middot; <a href=\"https:\/\/www.cnbc.com\/2026\/05\/11\/google-thwarts-effort-hacker-group-use-ai-mass-exploitation-event.html\" style=\"color:#1d4ed8;text-decoration:none;\">CNBC<\/a> &middot; <a href=\"https:\/\/thehackernews.com\/2026\/05\/hackers-used-ai-to-develop-first-known.html\" style=\"color:#1d4ed8;text-decoration:none;\">The Hacker News<\/a><\/p>\n<h3 style=\"margin:0 0 6px;font-size:16px;color:#111827;\">OpenAI launches Daybreak with GPT-5.5 (May 11)<\/h3>\n<p style=\"margin:0 0 6px;font-size:14px;color:#374151;\">Daybreak pairs <strong>GPT-5.5<\/strong> with Codex Security and a partner network (Cloudflare, Cisco, CrowdStrike, Oracle, Zscaler) to find, validate, and patch vulnerabilities. Three model tiers ship with progressively stricter access controls on the cyber-tuned variants. The launch is widely framed as OpenAI&rsquo;s answer to Anthropic&rsquo;s Project Glasswing.<\/p>\n<p style=\"margin:0 0 18px;font-size:12.5px;color:#475569;\">Sources: <a href=\"https:\/\/thehackernews.com\/2026\/05\/openai-launches-daybreak-for-ai-powered.html\" style=\"color:#1d4ed8;text-decoration:none;\">The Hacker News<\/a> &middot; <a href=\"https:\/\/www.macrumors.com\/2026\/05\/11\/openai-launches-daybreak\/\" style=\"color:#1d4ed8;text-decoration:none;\">MacRumors<\/a> &middot; <a href=\"https:\/\/www.ciodive.com\/news\/OpenAI-Daybreak-cyber-threats\/820036\/\" style=\"color:#1d4ed8;text-decoration:none;\">CIO Dive<\/a> &middot; <a href=\"https:\/\/www.scworld.com\/news\/openai-daybreak-joins-growing-movement-of-ai-driven-vulnerability-discovery\" style=\"color:#1d4ed8;text-decoration:none;\">SC Media<\/a> &middot; <a href=\"https:\/\/gizmodo.com\/daybreak-openais-answer-to-anthropics-project-glasswing-has-arrived-2000757349\" style=\"color:#1d4ed8;text-decoration:none;\">Gizmodo<\/a><\/p>\n<h3 style=\"margin:0 0 6px;font-size:16px;color:#111827;\">Microsoft MDASH autonomously finds 16 Windows vulnerabilities (May 12)<\/h3>\n<p style=\"margin:0 0 6px;font-size:14px;color:#374151;\">MDASH, a multi-model agentic scanning harness, autonomously discovered and validated <strong>16 previously unknown Windows vulnerabilities<\/strong> \u2014 including critical RCE flaws in the kernel TCP\/IP stack and IKEv2 \u2014 all patched in this week&rsquo;s Patch Tuesday. Microsoft reports 21\/21 planted vulnerabilities found with zero false positives and 88.45% on the public CyberGym benchmark.<\/p>\n<p style=\"margin:0 0 18px;font-size:12.5px;color:#475569;\">Sources: <a href=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2026\/05\/12\/defense-at-ai-speed-microsofts-new-multi-model-agentic-security-system-tops-leading-industry-benchmark\/\" style=\"color:#1d4ed8;text-decoration:none;\">Microsoft Security Blog<\/a><\/p>\n<h3 style=\"margin:0 0 6px;font-size:16px;color:#111827;\">Exaforce $125M Series B (May 12)<\/h3>\n<p style=\"margin:0 0 6px;font-size:14px;color:#374151;\">Three-year-old Exaforce closed a Series B at a ~$725M valuation. HarbourVest, Peak XV, Mayfield, Khosla, and Seligman Ventures backed the round. The thesis: AI for catching and stopping cyberattacks in real time.<\/p>\n<p style=\"margin:0 0 18px;font-size:12.5px;color:#475569;\">Sources: <a href=\"https:\/\/techcrunch.com\/2026\/05\/12\/exaforce-raises-125m-series-b-to-build-ai-for-catching-and-stopping-cyberattacks-as-they-happen\/\" style=\"color:#1d4ed8;text-decoration:none;\">TechCrunch<\/a><\/p>\n<h3 style=\"margin:0 0 6px;font-size:16px;color:#111827;\">Akamai to acquire LayerX for ~$205M (May 14)<\/h3>\n<p style=\"margin:0 0 6px;font-size:14px;color:#374151;\">Akamai is buying LayerX, a browser-based AI usage control and enterprise browser company. The deal pulls Akamai into the workforce-security AI-control category alongside Island, Talon (acquired by Palo Alto), and Menlo. Watch for downstream packaging into Akamai&rsquo;s edge security stack.<\/p>\n<p style=\"margin:0 0 18px;font-size:12.5px;color:#475569;\">Sources: <a href=\"https:\/\/www.akamai.com\/newsroom\/press-release\/akamai-technologies-announces-intent-to-acquire-layerx-advancing-its-workforce-security-strategy-with-ai-usage-control\" style=\"color:#1d4ed8;text-decoration:none;\">Akamai<\/a><\/p>\n<h3 style=\"margin:0 0 6px;font-size:16px;color:#111827;\">White Circle raises $11M for AI control (May 13)<\/h3>\n<p style=\"margin:0 0 6px;font-size:14px;color:#374151;\">Seed round to help organizations monitor, secure, and control AI model actions. Early entry in the &ldquo;AI runtime control&rdquo; category that vendors like Prompt Security, Lakera, and now LayerX-inside-Akamai are crowding into.<\/p>\n<p style=\"margin:0 0 18px;font-size:12.5px;color:#475569;\">Sources: <a href=\"https:\/\/www.securityweek.com\/white-circle-raises-11-million-for-ai-control-platform\/\" style=\"color:#1d4ed8;text-decoration:none;\">SecurityWeek<\/a><\/p>\n<h3 style=\"margin:0 0 6px;font-size:16px;color:#111827;\">Grego AI debuts with $250K AI-found exploit bounty (May 12)<\/h3>\n<p style=\"margin:0 0 6px;font-size:14px;color:#374151;\">New AI security startup launched out of stealth, claiming a record $250,000 bug bounty paid for a vulnerability discovered by its AI. Worth watching as a proof point that defensive AI is now finding marketable, paid exploits.<\/p>\n<p style=\"margin:0 0 18px;font-size:12.5px;color:#475569;\">Sources: <a href=\"https:\/\/siliconangle.com\/2026\/05\/12\/ai-security-startup-grego-ai-debuts-claims-record-250000-bounty-ai-found-exploit\/\" style=\"color:#1d4ed8;text-decoration:none;\">SiliconANGLE<\/a><\/p>\n<h3 style=\"margin:0 0 6px;font-size:16px;color:#111827;\">PANW Idira: identity for the AI enterprise (May 12)<\/h3>\n<p style=\"margin:0 0 6px;font-size:14px;color:#374151;\">Idira combines modern PAM with agentic-AI-aware identity governance, consolidating capabilities for legacy CyberArk customers following PANW&rsquo;s $25B CyberArk close in February. Positioned as the first identity platform purpose-built for an AI-agent enterprise.<\/p>\n<p style=\"margin:0 0 18px;font-size:12.5px;color:#475569;\">Sources: <a href=\"https:\/\/www.paloaltonetworks.com\/company\/press\/2026\/palo-alto-networks-introduces-idira--the-next-generation-identity-security-platform-built-for-the-ai-enterprise\" style=\"color:#1d4ed8;text-decoration:none;\">Palo Alto Networks<\/a><\/p>\n<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:24px 28px 4px;\">\n<h2 style=\"margin:0 0 4px;font-size:20px;color:#0f172a;\">Calls to action for the next 7 days<\/h2>\n<div style=\"height:3px;width:48px;background-color:#9333ea;margin-bottom:14px;\"><\/div>\n<ol style=\"margin:0 0 12px 18px;padding:0;font-size:14px;color:#374151;\">\n<li style=\"margin-bottom:8px;\"><strong>Stand up an AI-incident playbook<\/strong> that assumes adversary use of AI for vulnerability discovery \u2014 your 90-day disclosure-to-patch window is no longer safe.<\/li>\n<li style=\"margin-bottom:8px;\"><strong>Model the AI defender stack:<\/strong> Daybreak (OpenAI), Glasswing (Anthropic), MDASH (Microsoft). Which fits your existing build pipeline?<\/li>\n<li style=\"margin-bottom:8px;\"><strong>Inventory every AI tool, agent, and MCP-connected workflow<\/strong> your employees use. Treat shadow AI as you would shadow IT a decade ago.<\/li>\n<li style=\"margin-bottom:8px;\"><strong>Re-read the CISA agentic-AI adoption guidance<\/strong> and assess your agent-identity, agent-tool, and agent-monitoring controls.<\/li>\n<li style=\"margin-bottom:8px;\"><strong>Update your AI-vendor evaluation rubric<\/strong> to include published system cards, runtime telemetry, and adversarial test results \u2014 not just headline benchmarks.<\/li>\n<\/ol>\n<\/td>\n<\/tr>\n<tr>\n<td style=\"padding:28px 28px 32px;border-top:1px solid #e5e7eb;color:#6b7280;font-size:12px;text-align:center;\">\n<p style=\"margin:0 0 6px;color:#6b7280;\">The AI-ML Brief &middot; a Newshunter publication<\/p>\n<p style=\"margin:0 0 6px;color:#6b7280;\">Weekly news items are from the previous seven days. Foundational reading is refreshed each week.<\/p>\n<p style=\"margin:0 0 10px;color:#6b7280;\"><a href=\"*|UNSUB|*\" style=\"color:#1d4ed8;text-decoration:none;\">Unsubscribe<\/a> &middot; <a href=\"*|ARCHIVE|*\" style=\"color:#1d4ed8;text-decoration:none;\">View in browser<\/a><\/p>\n<p style=\"margin:14px 0 4px;font-size:11px;color:#9ca3af;\">Newsletter design, layout, and editorial curation &copy; 2026 Security Radar LLC. All rights reserved.<\/p>\n<p style=\"margin:0;font-size:11px;color:#9ca3af;\">Article titles and summaries are excerpted for review and commentary; all linked articles remain the copyright of their respective publishers and authors.<\/p>\n<\/td>\n<\/tr>\n<\/table>\n<\/td>\n<\/tr>\n<\/table>\n","protected":false},"excerpt":{"rendered":"<p>AI-ML Security Bulletin \u00b7 Issue May 17, 2026 The AI-ML Brief AI in security \u00b7 AI for security \u00b7 agentic AI in operations This week at a glance The week AI crossed into operational offense and operational defense. Google&#8217;s TIG attributed the first in-the-wild zero-day generated by an AI (a&#8230;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[45],"tags":[],"class_list":["post-5229","post","type-post","status-publish","format-standard","hentry","category-ai-ml"],"_links":{"self":[{"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/5229","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=5229"}],"version-history":[{"count":1,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/5229\/revisions"}],"predecessor-version":[{"id":5252,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/5229\/revisions\/5252"}],"wp:attachment":[{"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=5229"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=5229"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=5229"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}