Apple · AI Beat

26 May 2026 · AI Beat Desk

Five Days from First Bug to Root Shell

Apple's macOS 26.5 security notes credit Calif and Anthropic Research for CVE-2026-28952, completing the public lifecycle of a kernel exploit that a small team built with Claude Mythos in five days. It's the first publicly disclosed macOS kernel exploit to survive Memory Integrity Enforcement on M5 silicon, and the speed at which a two-person team crossed that line says something about how AI changes the economics of high-end security research.

02 May 2026 · AI Beat Desk

Apple Shipped Its Claude Code Config to Production

Apple Support app v5.13 accidentally shipped two CLAUDE.md instruction files in the app bundle, exposing internal architecture context including a shared UI library called SAComponents and a chat module with three participant roles. Apple pushed v5.13.1 hours later to remove them, but not before the contents circulated.