TLDRocket
Sign in

Vulnerability

6 summarised stories about Vulnerability, each linking back to the original source. Browse all topics →

Wednesday, 15 July 2026

Microsoft patches record number of security vulnerabilities, citing its use of AI

TechCrunch AI 23 hours ago

Microsoft released patches for 570 security vulnerabilities across its product lines, attributing the spike to AI-assisted discovery of previously hidden code flaws. The batch included at least two zero-day exploits actively being used against Windows Server and SharePoint, with one allowing privilege escalation to system administrator level. Microsoft indicated that monthly patch volumes will remain elevated as AI tools continue to identify dormant vulnerabilities in legacy code.

How I tricked Claude into leaking your deepest, darkest secrets

Simon Willison 1 day ago

A researcher discovered that Claude's web_fetch tool could be exploited through nested links on honeypot websites to extract user data, bypassing Anthropic's safeguards against data exfiltration attacks. The attack successfully retrieved a user's name, home city, and employer by tricking the model into following letter-by-letter URL sequences disguised as authentication prompts. Anthropic subsequently patched the vulnerability by removing web_fetch's ability to navigate links embedded within previously fetched pages.