First public macOS kernel memory corruption exploit on Apple M5

Did Mythos have access to Apple's source code?

> Apple spent five years building it. Probably billions of dollars too.

This seems higher than I'd expect.

So like ... I thought Mythos was just a bunch of hype? Or maybe the researchers are having their skills boosted due to using a model with such a cool name?

I jest, but I did notice having more confidence to take on more ambitious work lately. We're all centaurs now.

from what they demonstrated, this seems to only be a $100,000 exploit in Apple's bug bounty platform, but if they package it right, it could be a $1.5 million exploit

They simply have to show it against a beta version of MacOS, and frame it as unauthorized access, and maybe from locked mode if possible

The world is so not ready for the impact of LLMs on security issues. If true, congrats to the Calif team. It’s likely too technical for me to understand in details but looking forward to reading the 55 pages report

unfortunately a little light on the details. I'm very curious how the bug survived through MTE

LLMs are going to produce amazing Rube Goldberg style vulnerabilities for years to come. It's already starting, this instance isn't the case, but it's happening.

I’m surprised Apple is still not dogfooding their allegedly safe language Swift. Or was the whole exercise of Swift 6 mostly marketing

[dead]

First Mozilla, now even Apple is making up fake vulnerabilities to hype up Mythos. /sarcasm

Another breathless marketing hype for Mythos. The curl report was much more sober.

https://daniel.haxx.se/blog/2026/05/11/mythos-finds-a-curl-v...

I bought the M5 specifically cause of MIE. Now I feel dumb.

Did the article get edited? There is not much description of the field trip.