In this episode, Jeremy explores how the automated "Vulnpocalypse" is officially manifesting in enterprise networks. As Microsoft logs a historic record-shattering Patch Tuesday to keep pace with AI-accelerated discovery, a new breed of open-weight logic malware is emerging to change the threat landscape forever.

Key Episode Highlights:

• The Record 206-CVE Patch Tuesday: Microsoft issues an unprecedented 206 CVE fixes in a single month, roughly double the historical average, signaling the direct impact of autonomous vulnerability scanners like Claude Mythos and ChatGPT Cyber Edition.
• LiteLLM Added to CISA's KEV: The recently disclosed LiteLLM vulnerability officially transitions into CISA’s Known Exploited Vulnerabilities (KEV) catalog following verified active exploitation in the wild.
• 1,200% Surge in Deepfake Fraud: Google’s June 2026 Fraud Alert highlights an explosive rise in deepfakes, voice cloning, and synthetic identities, triggering a rollout of on-device security countermeasures for Pixel smartphones.
• 20,225 Instagram Accounts Hijacked: Bad actors successfully compromised over 20,000 accounts by leveraging context window exhaustion against Meta’s automated AI customer support, causing stored ethical guardrails to completely fade out over long conversations.
• The Dawn of Reasoned Logic Malware: Academic researchers demonstrate an autonomous AI worm that brings a lightweight open-weight model directly onto compromised systems, navigating local environments dynamically using logical reasoning rather than static exploit checklists.
• The 6-Month Frontier Window: Internal policy intelligence indicates the United States has less than 6 to 12 months of standard lead time before Beijing achieves technical parity with the newest wave of hyper-advanced frontier model architectures.

Episode Links

• https://www.helpnetsecurity.com/2026/06/08/instagram-ai-support-vulnerability-account-takeovers/
• https://thehackernews.com/2026/06/litellm-flaw-cve-2026-42271-exploited.html
• https://www.helpnetsecurity.com/2026/06/03/autonomous-ai-worm-prototype/
• https://fortune.com/2026/06/03/a-new-ai-powered-computer-worm-could-prove-to-be-the-stuff-of-cybersecurity-nightmares/
• https://www.politico.com/news/2026/06/07/frontier-ai-cybersecurity-china-race-00952786
• https://www.reuters.com/technology/anthropic-rolls-out-public-version-mythos-without-cybersecurity-capability-2026-06-09/
• https://www.forbes.com/sites/zacharyfolk/2026/06/09/anthropic-releases-first-public-version-of-claude-mythos-with-major-safeguards/
• https://www.darkreading.com/vulnerabilities-threats/blame-ai-patch-tuesday-record-206-cves
• https://www.darkreading.com/cyber-risk/adaptive-agentic-ai-worms-enterprise-cyber-threat
• https://www.forbes.com/sites/maribellopez/2026/06/04/enterprise-ais-security-time-bomb-is-ticking-cisco-shares-its-plan/
• https://www.toxsec.com/p/agentic-ai-attacks-explained-lethal-trifecta
• https://www.webpronews.com/googles-june-2026-fraud-alert-exposes-ais-growing-role-in-sophisticated-online-scams
• https://www.bleepingcomputer.com/news/security/google-adds-android-protection-against-ai-deepfake-scam-calls/
• https://techcrunch.com/2026/06/03/instagram-is-alerting-users-who-were-targeted-by-hackers-during-ai-chatbot-attacks/