Back

AI-Driven Exploit Bypasses Apple's M5 Security in Days

Severity: High (Score: 70.2)

Sources: calif.io, Indiatoday.In, Mashable, Heise.De, security.apple.com

Summary

Researchers from Calif, a Palo Alto-based cybersecurity startup, successfully exploited Apple's Memory Integrity Enforcement (MIE) on the M5 chip within a week using Anthropic's AI model, Claude Mythos. The exploit involved linking two bugs and several techniques to achieve kernel memory corruption, allowing unauthorized access to restricted system areas. The exploit is notable as it is the first public demonstration of a macOS kernel memory corruption bypassing MIE protections. Calif's team discovered the initial vulnerabilities on April 25, 2026, and had a working exploit by May 1, 2026. They reported their findings directly to Apple, emphasizing the role of human expertise alongside AI in developing the exploit. The incident raises concerns about the accelerating capabilities of AI in offensive cybersecurity. Apple is currently investigating the reported vulnerabilities and is expected to release a patch soon. Key Points: • Calif exploited Apple's M5 chip security in under a week using AI assistance. • The exploit is the first public demonstration of bypassing Apple's Memory Integrity Enforcement. • Human expertise was crucial in conjunction with AI for developing the exploit.

Key Entities

  • Malware (attack_type)
  • Privilege Escalation (attack_type)
  • Zero-day Exploit (attack_type)
  • Project Glasswing (campaign)
  • Apple (company)
  • Calif (company)
  • Job’s Mob (company)
  • CWE-120 - Classic Buffer Overflow (cwe)
  • Cwe-125 - Out-of-bounds Read (cwe)
  • Cwe-362 - Race Condition (cwe)
  • Cwe-416 - Use After Free (cwe)
  • Cwe-787 - Out-of-bounds Write (cwe)
  • german.it (domain)
  • Coruna (malware)
  • DarkSword (malware)
  • T1068 - Exploitation for Privilege Escalation (mitre_attack)
  • Android (platform)
  • Firefox (platform)
  • IOS (platform)
  • Linux (platform)
  • MacOS (platform)
  • Afl-fuzz (tool)
  • Claude (tool)
  • Mythos (tool)
  • Mythos Preview (tool)
  • Beast (ransomware_group)
  • Bugmageddon (vulnerability)
  • Crime (vulnerability)
  • Poodle (vulnerability)
  • Spectre (vulnerability)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed