AI-Driven Exploit Bypasses Apple's M5 Security in Days

AI-Driven Exploit Bypasses Apple's M5 Security in Days

First seen 15 May 2026, 00:26 UTC 9To5MacLetsdatasciencesecurity.apple.comDaringfireballcalif.io+21 87% similarity 70.2

Article Content

Browse articles
ThreatCluster

Researchers from Calif, a Palo Alto-based cybersecurity startup, successfully exploited Apple's Memory Integrity Enforcement (MIE) on the M5 chip within a week using Anthropic's AI model, Claude Mythos. The exploit involved linking two bugs and several techniques to achieve kernel memory corruption, allowing unauthorized access to restricted system areas. The exploit is notable as it is the first public demonstration of a macOS kernel memory corruption bypassing MIE protections. Calif's team discovered the initial vulnerabilities on April 25, 2026, and had a working exploit by May 1, 2026. They reported their findings directly to Apple, emphasizing the role of human expertise alongside AI in developing the exploit. The incident raises concerns about the accelerating capabilities of AI in offensive cybersecurity. Apple is currently investigating the reported vulnerabilities and is expected to release a patch soon.

Key Points: • Calif exploited Apple's M5 chip security in under a week using AI assistance. • The exploit is the first public demonstration of bypassing Apple's Memory Integrity Enforcement. • Human expertise was crucial in conjunction with AI for developing the exploit.

ThreatCluster AI

Timeline

2026-04-25
Initial bugs discovered
Bruce Dang found two vulnerabilities that would later be exploited against Apple's M5 chip.
Indiatoday.In
2026-04-27
Team assembled
Dion Blazakis joined Calif to work on the exploit development shortly after the initial discovery.
Indiatoday.In
2026-05-01
Working exploit developed
Calif announced they had a functioning exploit capable of bypassing MIE protections on the M5 chip.
Indiatoday.In
2026-05-15
Findings reported to Apple
Calif shared their exploit findings directly with Apple during an in-person meeting.
Heise.De

Community

Browse all →