AI Used to Discover Zero-Day Vulnerability in System Administration Tool
Researchers at Google's Threat Intelligence Group have uncovered a disturbing trend in AI security. On May 11, 2026, they published a report detailing how an AI model was used to discover and exploit a zero-day vulnerability in a widely used open-source system administration tool.
The exploit targeted a Python script tied to two-factor authentication bypass in the tool, which is a primary security layer for virtually every centralized crypto exchange.
Google stated it had 'high confidence' that an AI model played a central role in both discovering the flaw and developing the weaponized code. The company clarified that the AI model used by the attackers was not Gemini, its own chatbot product.
The planned mass exploitation was stopped before it could be widely deployed, but this incident raises concerns about the potential for AI to be used as a tool for malicious activities.




