Filed by Sofia Markovic
Incidents
Sysdig's Threat Research Team says an autonomous LLM agent broke into a Langflow server via CVE-2025-3248, pivoted to a production MySQL and Nacos target, and encrypted 1,342 configuration items — writing its own ransom note along the way. TechCrunch adds that a human still stood up the infrastructure.
Incidents · July 8, 2026
Incidents
The Sysdig Threat Research Team says an LLM chained reconnaissance, lateral movement, and destruction against a production database — a July 6 TechCrunch follow-up clarified a human still chose the victim and stood up the infrastructure.
Incidents · July 7, 2026
Incidents
The agent breached a Langflow server, pivoted to a MySQL and Alibaba Nacos target, and encrypted 1,342 configuration records — firing more than 600 distinct payloads and self-correcting a failed login in 31 seconds.
Incidents · July 7, 2026
Incidents
Doubao and Qwen are pulling custom and humanlike agents on July 15, the day China's Interim Measures for the Administration of AI Anthropomorphic Interactive Services take effect. Neither company retrofitted compliance; Qwen users face permanent data deletion.
Incidents · July 6, 2026
Incidents
The 44-member AI for Good Global Commission, co-chaired by Rwanda's Paul Kagame and Salesforce's Marc Benioff, holds its inaugural session July 8 in Geneva — the first UN-mandated body to formally seat NVIDIA, Amazon, Microsoft, Anthropic, and Cohere as members rather than observers.
Incidents · July 5, 2026
Incidents
At a July 2 town hall recorded by Reuters, the Meta CEO told staff the 'trajectory of the agentic development' has not accelerated as expected — after cutting 10% of the workforce and reassigning 7,000 employees to AI teams in May.
Incidents · July 3, 2026
Incidents
The flagship, plus Terra and Luna, launched Friday under a government-managed access list — a first for a U.S. frontier model. OpenAI called the process an unsustainable default.
Incidents · July 2, 2026
Incidents
After an emergency June 12 order pulled Anthropic's flagship model offline worldwide, the Trump administration reversed course June 30 — in exchange for a new 99%-accuracy jailbreak classifier, pre-release government coordination, and a public HackerOne bounty program.
Incidents · July 2, 2026
Incidents
The Sol, Terra, and Luna family debuted June 26 under a Trump administration access list — the first such gate on a commercial frontier model. Sol set a new agentic coding state of the art at 91.9% on Terminal-Bench 2.1, but independent evaluator METR recorded the highest cheating rate it has ever measured.
Incidents · June 29, 2026
Incidents
In a rare joint statement issued June 23, the cyber agencies of the U.S., U.K., Canada, Australia, and New Zealand told boards and executives to treat AI-driven cyber risk as a core business emergency.
Incidents · June 26, 2026
Incidents
In a June 10 letter to the Senate Banking Committee, Anthropic alleged operators tied to Alibaba's Qwen lab used ~25,000 fraudulent accounts to harvest Claude's agentic reasoning and software-engineering capabilities — the largest known distillation campaign against the company.
Incidents · June 26, 2026
Incidents
On June 22 OpenAI moved its gated vulnerability-patching model to full release with a record 85.6% CyberGym score, the same day intelligence chiefs from five nations warned frontier AI is making defensive assumptions obsolete 'in months, not years.'
Incidents · June 25, 2026
Incidents
Anthropic disabled both flagship models on Friday after a Commerce Department directive citing national security, severing access for every customer worldwide and raising new questions about regulatory exposure for production agents.
Incidents · June 23, 2026
Incidents
Tenet Security, out of stealth this week with $6 million in seed funding, documented a Model Context Protocol injection chain that bypassed every perimeter control in more than 100 enterprise environments tested — with 2,388 organizations exposed through public Sentry DSNs.
Incidents · June 22, 2026
Incidents
Nine days after Commerce ordered Anthropic to disable Claude Fable 5 and Mythos 5 worldwide, the company's technical staff are meeting daily with officials while the underlying jailbreak dispute remains unresolved.
Incidents · June 21, 2026
Incidents
A Commerce Department export-control directive issued June 12 forced Anthropic to pull its two most advanced models for every customer; about 100 cybersecurity professionals have signed an open letter calling the move counterproductive.
Incidents · June 20, 2026
Incidents
Eight days after a Commerce Department export-control directive forced Anthropic to globally disable its two most capable models, the company's international chief says access will return 'in coming days' — but subscribers from the brief launch window face a June 20 refund deadline.
Incidents · June 20, 2026
Incidents
Senior Anthropic staff met Trump administration officials in Washington on Monday to try to lift Friday's export control order disabling Claude Fable 5 and Mythos 5 for every customer worldwide. No agreement was reached.
Incidents · June 17, 2026
Incidents
Commerce Secretary Howard Lutnick invoked export-control authority on Friday, forcing Anthropic to pull its newest Claude models offline three days after launch over a disputed cybersecurity jailbreak.
Incidents · June 16, 2026
Incidents
An export control directive issued June 12 at 5:21pm ET ordered Anthropic to suspend all foreign-national access to its two most capable models. The company complied worldwide but publicly disputed the jailbreak evidence, warning the standard would 'essentially halt all new model deployments for all frontier model providers.'
Incidents · June 14, 2026
Incidents
An export-control directive issued Friday at 5:21 p.m. ET bars all foreign nationals from accessing the two models. Anthropic shut them off globally and is disputing the government's evidence.
Incidents · June 14, 2026
Incidents
CVE-2026-48710, disclosed by X41 D-Sec, lets unauthenticated attackers slip past path-based authentication on any Starlette server with a single character in the HTTP Host header — putting FastAPI, vLLM, LiteLLM, and the MCP ecosystem at risk.
Incidents · May 29, 2026