---
title: "Anthropic’s bug-hunting Mythos was greatest marketing stunt ever, says cURL creator"
source: newsletter
source_url: https://www.theregister.com/security/2026/05/11/anthropics-bug-hunting-mythos-was-greatest-marketing-stunt-ever-says-curl-creator/5238111/
tags: [vietnam, cloud-computing, government, data-sovereignty]
review_value: 8
review_confidence: 8
review_recommendation: strong
review_stars: 4
date: 2026-05-13
sha256: 5d29dd95cad4e2fb8fe5f59ddb606920c0aa836bb5689ca3a8db3983bef48430
---
Title: Anthropic’s bug-hunting Mythos was greatest marketing stunt ever, says cURL creator
URL Source: https://www.theregister.com/security/2026/05/11/anthropics-bug-hunting-mythos-was-greatest-marketing-stunt-ever-says-curl-creator/5238111/
Published Time: 2026-05-11T16:30:53.000Z
Markdown Content:
# Anthropic’s bug-hunting Mythos was greatest marketing stunt ever, says cURL creator
[Jump to main content](https://www.theregister.com/security/2026/05/11/anthropics-bug-hunting-mythos-was-greatest-marketing-stunt-ever-says-curl-creator/5238111/#main)
Search 
TOPICS
*   Security
    *   [All Security](https://www.theregister.com/security)
    *   [Cyber-crime](https://www.theregister.com/cyber_crime)
    *   [Patches](https://www.theregister.com/patches)
    *   [Research](https://www.theregister.com/research)
    *   [CSO](https://www.theregister.com/cso)
*   Off-Prem
    *   [All Off-Prem](https://www.theregister.com/off_prem)
    *   [Edge + IoT](https://www.theregister.com/edge_iot)
    *   [Channel](https://www.theregister.com/channel)
    *   [PaaS + IaaS](https://www.theregister.com/paas_iaas)
    *   [SaaS](https://www.theregister.com/saas)
*   On-Prem
    *   [All On-Prem](https://www.theregister.com/on_prem)
    *   [Systems](https://www.theregister.com/systems)
    *   [Storage](https://www.theregister.com/storage)
    *   [Networks](https://www.theregister.com/networks)
    *   [HPC](https://www.theregister.com/hpc)
    *   [Personal Tech](https://www.theregister.com/personal_tech)
    *   [Cx0](https://www.theregister.com/cxo)
    *   [Public Sector](https://www.theregister.com/public-sector)
*   Software
    *   [All Software](https://www.theregister.com/software)
    *   [AI + ML](https://www.theregister.com/ai_ml)
    *   [Applications](https://www.theregister.com/applications)
    *   [Databases](https://www.theregister.com/databases)
    *   [DevOps](https://www.theregister.com/devops)
    *   [OSes](https://www.theregister.com/oses)
    *   [Virtualization](https://www.theregister.com/virtualization)
*   Offbeat
    *   [All Offbeat](https://www.theregister.com/offbeat)
    *   [Columnists](https://www.theregister.com/columnists)
    *   [Science](https://www.theregister.com/science)
    *   [BOFH](https://www.theregister.com/bofh)
    *   [Legal](https://www.theregister.com/legal)
    *   [Bootnotes](https://www.theregister.com/bootnotes)
    *   [Site News](https://www.theregister.com/site_news)
    *   [About Us](https://www.theregister.com/about_us)
*   Special Features
    *   [All Special Features](https://www.theregister.com/tag/special_features)
    *   [HPE: AI Explainers](https://www.theregister.com/explainer/ai-explainer)
    *   [RSA Conference](https://www.theregister.com/special_features/rsa)
    *   [Agentic AI](https://www.theregister.com/special_features/agentic_ai)
    *   [The Future of the Datacenter](https://www.theregister.com/special_features/future_of_the_datacenter)
    *   [AWS:Reinvent](https://www.theregister.com/special_features/aws_reinvent)
    *   [Nvidia GTC](https://www.theregister.com/special_features/nvidia_gtc)
    *   [SC25](https://www.theregister.com/special_features/2025_11_sycomp_supercomputing)
    *   [Supercomputing Month](https://www.theregister.com/special_features/2025_11_supercomputing_month)
*   Vendor Voice
    *   [All Vendor Voice](https://vendorvoice.theregister.com/)
    *   [Infinidat](https://vendorvoice.theregister.com/infinidat/)
    *   [Everpure](https://vendorvoice.theregister.com/everpure/)
    *   [Rubrik](https://vendorvoice.theregister.com/rubrik/)
    *   [Make it real with Capgemini and AWS](https://vendorvoice.theregister.com/aws_capgemini/)
    *   [Money Movement Hub](https://vendorvoice.theregister.com/aws_fis/)
    *   [ZTE](https://vendorvoice.theregister.com/zte_news_and_stories/)
    *   [Nutanix: Scale Kubernetes. Not Chaos.](https://vendorvoice.theregister.com/nutantix_cloud_native_apps/)
    *   [AWS New Horizon](https://vendorvoice.theregister.com/aws_new_horizon/)
*   Resources
    *   [Intelligence](https://intelligence.theregister.com/)
    *   [Webinars & Events](https://intelligence.theregister.com/events/list/)
    *   [Newsletters](https://account.theregister.com/login?r=https%3A%2F%2Faccount.theregister.com%2Fedit%2Fnewsletter%2F)
Search 
[![Image 1: Go to frontpage. Logo, The Register](https://www.theregister.com/view-resources/dachser2/public/theregister/logo.svg)](https://www.theregister.com/)[![Image 2: Go to frontpage. Logo, The Register](https://www.theregister.com/view-resources/dachser2/public/theregister/logo.svg)](https://www.theregister.com/)[![Image 3: Go to frontpage. Logo, The Register](https://www.theregister.com/view-resources/dachser2/public/theregister/logo.svg)](https://www.theregister.com/)
*   [Sign in](https://account.theregister.com/login/)
*   [Datacenter](https://www.theregister.com/tag/datacenter)
*   [Security](https://www.theregister.com/security)
*   [Microsoft](https://www.theregister.com/tag/microsoft)
*   [AWS](https://www.theregister.com/tag/aws)
*   [Developer](https://www.theregister.com/tag/developer)
*   [Open Source](https://www.theregister.com/tag/open%20source)
*   [IT Careers](https://www.theregister.com/tag/tech%20jobs)
*   [Columnists](https://www.theregister.com/tag/columnists)
*   [Who, Me?](https://www.theregister.com/tag/who%20me)
*   [On Call](https://www.theregister.com/tag/on%20call/)
REG AD
Security
# Anthropic’s bug-hunting Mythos was greatest marketing stunt ever,says cURL creator
After all that hype, AI scanner found one low-severity cURL flaw
Brandon Vigliarolo[Brandon Vigliarolo](https://www.theregister.com/author/brandon-vigliarolo)
[34](https://forums.theregister.com/forum/all/2026/05/11/202617/)
Published Mon 11 May 2026 // 16:30 UTC
[](https://www.facebook.com/sharer.php?u=https%3A%2F%2Fwww.theregister.com%2Fsecurity%2F2026%2F05%2F11%2Fanthropics-bug-hunting-mythos-was-greatest-marketing-stunt-ever-says-curl-creator%2F5238111)[](https://twitter.com/intent/tweet?url=https%3A%2F%2Fwww.theregister.com%2Fsecurity%2F2026%2F05%2F11%2Fanthropics-bug-hunting-mythos-was-greatest-marketing-stunt-ever-says-curl-creator%2F5238111)[](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fwww.theregister.com%2Fsecurity%2F2026%2F05%2F11%2Fanthropics-bug-hunting-mythos-was-greatest-marketing-stunt-ever-says-curl-creator%2F5238111)[](https://bsky.app/intent/compose?text=Anthropic%E2%80%99s%20bug-hunting%20Mythos%20was%20greatest%20marketing%20stunt%20ever%2C%26nbsp%3Bsays%20cURL%20creator%0Ahttps%3A%2F%2Fwww.theregister.com%2Fsecurity%2F2026%2F05%2F11%2Fanthropics-bug-hunting-mythos-was-greatest-marketing-stunt-ever-says-curl-creator%2F5238111)[](https://www.reddit.com/submit?url=https%3A%2F%2Fwww.theregister.com%2Fsecurity%2F2026%2F05%2F11%2Fanthropics-bug-hunting-mythos-was-greatest-marketing-stunt-ever-says-curl-creator%2F5238111&title=Anthropic%E2%80%99s%20bug-hunting%20Mythos%20was%20greatest%20marketing%20stunt%20ever%2C%26nbsp%3Bsays%20cURL%20creator)[](https://api.whatsapp.com/send?text=Anthropic%E2%80%99s%20bug-hunting%20Mythos%20was%20greatest%20marketing%20stunt%20ever%2C%26nbsp%3Bsays%20cURL%20creator%0Ahttps%3A%2F%2Fwww.theregister.com%2Fsecurity%2F2026%2F05%2F11%2Fanthropics-bug-hunting-mythos-was-greatest-marketing-stunt-ever-says-curl-creator%2F5238111)
cURL developer Daniel Stenberg has seen Anthropic’s Mythos, a model the AI biz has suggested is too capable at finding security holes to release publicly, scan his popular open source project. But after the system turned up just a single vulnerability, he concluded the hype around Mythos was “primarily marketing” rather than a major AI security breakthrough.
Stenberg [explained](https://daniel.haxx.se/blog/2026/05/11/mythos-finds-a-curl-vulnerability/) in a Monday blog post that he was promised access to Anthropic’s Mythos model - sort of - through the AI biz’s Project Glasswing program. Part of Glasswing involves giving high-profile open source projects access via the Linux Foundation, but while Stenberg signed up to try Mythos, he said he never actually received direct access to the model. Instead, someone else with access ran Mythos against curl’s codebase and later sent him a report.
“It’s not that I would have a lot of time to explore lots of different prompts and doing deep dive adventures anyway,” Stenberg explained. “Getting the tool to generate a first proper scan and analysis would be great, whoever did it.”
REG AD
That scan, which analyzed curl’s git repository at a recent master-branch commit, was sent back to him earlier this month, and it found just five things that it claimed were “confirmed security vulnerabilities” in cURL. Saying he had expected an extensive list of vulnerabilities, Stenberg wrote that the report “felt like nothing,” and that feeling was further validated by a review of Mythos’ findings.
REG AD
“Once my curl security team fellows and I had poked on this short list for a number of hours and dug into the details, we had trimmed the list down and were left with one confirmed vulnerability,” Stenberg said, bringing us back to the aforementioned number.
As for the other four, three turned out to be false positives that pointed out cURL shortcomings already noted in API documentation, while the team deemed the fourth to be just a simple bug.
“The single confirmed vulnerability is going to end up a severity low CVE planned to get published in sync with our pending next curl release 8.21.0 in late June,” the cURL meister noted. “The flaw is not going to make anyone grasp for breath.”
That said, Mythos did find several other non-security bugs that Stenberg said the team is working on fixing, and he notes that their description and explanation were well done. Mythos can do good work, in other words, but it’s [not a ground-breaking, game-changing AI model](https://www.theregister.com/security/2026/04/22/anthropic-mythos-shaping-up-as-nothingburger/5225649) like Anthropic has claimed.
“My personal conclusion can however not end up with anything else than that the big hype around this model so far was primarily marketing,” Stenberg said in the blog post. “I see no evidence that this setup finds issues to any particular higher or more advanced degree than the other tools have done before Mythos.”
### cURL code is no stranger to AI
To say cURL has become widely used in its nearly three decades of existence would be an understatement. Its wide reach has meant that its team has been running it through all sorts of static code analyzers and fuzz testing it since well before the dawn of the AI age. With AI’s rise, the cURL team has adapted, meaning Mythos is hardly the first AI to get its fingers on cURL’s codebase.
“These tools and the analyses they have done have triggered somewhere between two and three hundred bugfixes merged in curl through-out the recent 8-10 months or so,” Stenberg said of tools like AISLE, Zeropath, and OpenAI Codex Security that’ve tested cURL code. “A bunch of the findings these AI tools reported were confirmed vulnerabilities and have been published as CVEs. Probably a dozen or more.”
REG AD
Stenberg’s experience with AI testing cURL, in other words, makes it a great candidate to see how effective Mythos can really be at finding more than the average AI.
As Stenberg noted elsewhere in his blog post, Mythos isn’t doing anything particularly novel when it comes to security discoveries: It might be a bit better at finding things than previous models, but “it is not better to a degree that seems to make a significant dent in code analyzing,” the cURL author noted.
Stenberg isn’t an AI doomer when it comes to its ability to improve software design, though. Yes, he may have [closed the cURL bug bounty](https://www.theregister.com/security/2026/01/21/curl-shutters-bug-bounty-program-to-stop-ai-slop/5063039) earlier this year due to an influx of sloppy, useless bug reports, but he also noted a few months prior to the bounty closure that some security researchers assisted by AI [have made valuable reports](https://www.theregister.com/software/2025/10/02/curl-project-swamped-with-ai-slop-finds-not-all-ai-is-bad/588432).
“AI powered code analyzers are significantly better at finding security flaws and mistakes in source code than any traditional code analyzers did in the past,” Stenberg said, adding an important qualifier for the Mythos moment: “All modern AI models are good at this now.”
### Mythos isn’t any more creative than its creators
Both older AI models and security-focused tools like Mythos have a common limitation, as far as Stenberg is concerned: They’re only as good at finding security vulnerabilities as the humans who programmed them.
“AI tools find the usual and established kind of errors we already know about. It just finds new instances of them,” Stenberg said. “We have not seen any AI so far report a vulnerability that would somehow be of a novel kind or something totally new.”
As for Mythos, Stenberg remains unimpressed, calling it "an amazingly successful marketing stunt for sure" in his blog post.
REG AD
In an email to The Register, Stenberg admitted that it’d be possible for AI models to actually discover new, novel types of vulnerabilities, but he’s still not convinced that they can go beyond what humans are capable of finding, given that they’re limited by our understanding of how software vulnerabilities work.
At the end of the day, Stenberg explained, when we talk about security, we’re only talking about code. “Source code is text and it feels like maybe we already know about most ways we can do security problems in it,” he pondered in his email.
In other words, like the valuable AI-assisted reports made to the cURL bug bounty program before its closure due to a flood of AI garbage, making valuable use of systems like Mythos is going to require humans to get creative. Sorry, no foisting your critical thinking onto a bot.
## MORE CONTEXT
*   ### [Curl project founder snaps over deluge of time-sucking AI slop bug reports](https://www.theregister.com/security/2025/05/07/curl-takes-action-against-time-wasting-ai-bug-reports/267311)
*   ### [Mythos found 271 Firefox flaws – but none a human couldn’t spot](https://www.theregister.com/software/2026/04/22/mythos-found-271-firefox-flaws-none-a-human-couldnt-spot/5223657)
*   ### [AI slop got better, so now maintainers have more work](https://www.theregister.com/software/2026/04/06/ai-slop-got-better-so-now-maintainers-have-more-work/5223172)
*   ### [Anthropic's mysterious Mythos AI threatens to upend the infosec world](https://www.theregister.com/security/2026/04/13/anthropics-mythos-has-the-kettle-crew-curious-skeptical/5226661)
“Human researchers have always used tools when they look for security problems,” Stenberg told us. “Adding AIs to the mix gives the humans even more powerful tools to use, more ways to find problems. I expect that many security bugs going forward will be found by humans coming up with new ways and angles of prompting the AIs.”
Stenberg said that he hopes he’ll actually get his hands on Mythos so he can experiment with its capabilities, but he doesn’t seem to be holding out hope the promised access will materialize.
“I have been promised access and for all I know I will eventually get it,” Stenberg told us. “I just don't know when.” ®
[anthropic](https://www.theregister.com/tag/anthropic)[ai](https://www.theregister.com/tag/ai)[cybersecurity](https://www.theregister.com/tag/cybersecurity)[software](https://www.theregister.com/tag/software)[security](https://www.theregister.com/tag/security)[34](https://forums.theregister.com/forum/all/2026/05/11/202617/)
[](https://www.facebook.com/sharer.php?u=https%3A%2F%2Fwww.theregister.com%2Fsecurity%2F2026%2F05%2F11%2Fanthropics-bug-hunting-mythos-was-greatest-marketing-stunt-ever-says-curl-creator%2F5238111)[](https://twitter.com/intent/tweet?url=https%3A%2F%2Fwww.theregister.com%2Fsecurity%2F2026%2F05%2F11%2Fanthropics-bug-hunting-mythos-was-greatest-marketing-stunt-ever-says-curl-creator%2F5238111)[](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fwww.theregister.com%2Fsecurity%2F2026%2F05%2F11%2Fanthropics-bug-hunting-mythos-was-greatest-marketing-stunt-ever-says-curl-creator%2F5238111)[](https://bsky.app/intent/compose?text=Anthropic%E2%80%99s%20bug-hunting%20Mythos%20was%20greatest%20marketing%20stunt%20ever%2C%26nbsp%3Bsays%20cURL%20creator%0Ahttps%3A%2F%2Fwww.theregister.com%2Fsecurity%2F2026%2F05%2F11%2Fanthropics-bug-hunting-mythos-was-greatest-marketing-stunt-ever-says-curl-creator%2F5238111)[](https://www.reddit.com/submit?url=https%3A%2F%2Fwww.theregister.com%2Fsecurity%2F2026%2F05%2F11%2Fanthropics-bug-hunting-mythos-was-greatest-marketing-stunt-ever-says-curl-creator%2F5238111&title=Anthropic%E2%80%99s%20bug-hunting%20Mythos%20was%20greatest%20marketing%20stunt%20ever%2C%26nbsp%3Bsays%20cURL%20creator)[](https://api.whatsapp.com/send?text=Anthropic%E2%80%99s%20bug-hunting%20Mythos%20was%20greatest%20marketing%20stunt%20ever%2C%26nbsp%3Bsays%20cURL%20creator%0Ahttps%3A%2F%2Fwww.theregister.com%2Fsecurity%2F2026%2F05%2F11%2Fanthropics-bug-hunting-mythos-was-greatest-marketing-stunt-ever-says-curl-creator%2F5238111)
REG AD
[![Image 4: Hands connecting a white Wi‑Fi router on a table next to a laptop and small plant.](https://image.theregister.com/5239018.jpg?imageId=5239018&panox=0.00&panoy=20.83&panow=100.00&panoh=71.67&heightx=27.39&heighty=0.00&heightw=41.43&heighth=100.00&width=960&height=432&format=webp&format=jpg) Networks ## FCC walks back router update ban before it bricked America's network security Quietly extends waivers to 2029 after realizing it was about to leave millions of devices unpatched](https://www.theregister.com/networks/2026/05/12/fcc-walks-back-router-update-ban-before-it-bricked-americas-network-security/5238938)
[cyber-crime ## Congress investigates Canvas breach as company pays ransom Instructure CEO Steve Daly's got some explaining to do](https://www.theregister.com/cyber-crime/2026/05/12/congress-investigates-canvas-breach-after-instructure-cuts-deal-with-shinyhunters/5238927)
[Networks ## ZTE and Claro launch next-generation 4K Ultra HD IP STB in Brazil Device delivers smoother streaming and simpler interaction, elevating home entertainment](https://www.theregister.com/networks/2026/05/12/zte-and-claro-launch-next-generation-4k-ultra-hd-ip-stb-in-brazil/5238584)
[Cyber-crime ## AirBit crypto Ponzi victims can now claim slice of $400M asset haul After guilty pleas, prison terms, and seizures, the DOJ has opened the compensation process](https://www.theregister.com/cyber-crime/2026/05/12/airbit-crypto-ponzi-victims-can-now-claim-slice-of-400m-asset-haul/5238867)
[![Image 5: Stylized black-and-white portrait of Donald Trump on a dark background.](https://image.theregister.com/5234720.jpg?imageId=5234720&panox=0.00&panoy=0.00&panow=100.00&panoh=100.00&heightx=0.00&heighty=0.00&heightw=100.00&heighth=100.00&width=960&height=432&format=webp&format=jpg) Columnists ## Trump jumps from 'anything goes' to 'strict regulation' AI policy In a word, 'Huh?'](https://www.theregister.com/columnists/2026/05/08/trump-jumps-from-anything-goes-to-strict-regulation-ai-policy/5234687)
[Security ## US bank reports itself after slinging customer data at 'unauthorized AI app' Volume and sensitivity of the data cited as chief concerns](https://www.theregister.com/security/2026/05/12/us-bank-reports-itself-after-ai-customer-data-mishap/5238787)
### MOST POPULAR
*   [![Image 6](https://image.theregister.com/5237217.jpg?imageId=5237217&x=0&y=0&cropw=100&croph=100&panox=0&panoy=0&panow=100&panoh=100&width=70&height=60)](https://www.theregister.com/off-prem/2026/05/07/ibm-cloud-evaporates-as-datacenter-loses-power/5234835)[off-prem #### IBM Cloud evaporates as datacenter loses power](https://www.theregister.com/off-prem/2026/05/07/ibm-cloud-evaporates-as-datacenter-loses-power/5234835) 
*   [![Image 7](https://image.theregister.com/1630793.jpg?imageId=1630793&x=0&y=0&cropw=100&croph=100&panox=0&panoy=0&panow=100&panoh=100&width=70&height=60)](https://www.theregister.com/ai-and-ml/2026/05/07/chrome-silently-installs-a-4-gb-local-llm-on-your-computer/5230893)[AI + ML #### Chrome silently installs a 4 GB local LLM on your computer](https://www.theregister.com/ai-and-ml/2026/05/07/chrome-silently-installs-a-4-gb-local-llm-on-your-computer/5230893) 
*   [![Image 8](https://image.theregister.com/5230516.jpg?imageId=5230516&x=0&y=0&cropw=100&croph=100&panox=0&panoy=0&panow=100&panoh=100&width=70&height=60)](https://www.theregister.com/cyber-crime/2026/05/06/taiwan-student-pwns-rail-comms-halts-high-speed-trains/5230489)[Cyber-crime #### Taiwan cops say student's radio kit brought bullet trains to a standstill](https://www.theregister.com/cyber-crime/2026/05/06/taiwan-student-pwns-rail-comms-halts-high-speed-trains/5230489) 
*   [![Image 9](https://image.theregister.com/5229005.jpg?imageId=5229005&panox=0&panoy=0&panow=0&panoh=0&width=70&height=60)](https://www.theregister.com/software/2026/05/05/british-mathematician-hands-openclaw-agent-a-credit-card/5228654)[AI + ML #### Brit mathematician lets AI agent loose with credit card – cue password leaks, CAPTCHA chaos and more](https://www.theregister.com/software/2026/05/05/british-mathematician-hands-openclaw-agent-a-credit-card/5228654) 
*   [![Image 10](https://image.theregister.com/5235270.jpg?imageId=5235270&x=0&y=0&cropw=98.66&croph=100&panox=0&panoy=0&panow=98.66&panoh=100&width=70&height=60)](https://www.theregister.com/personal-tech/2026/05/10/hp-eliteboard-g1a-puts-a-pc-inside-a-keyboard/5235258)[personal tech #### HP stuffed a PC into a keyboard. We took it for a spin](https://www.theregister.com/personal-tech/2026/05/10/hp-eliteboard-g1a-puts-a-pc-inside-a-keyboard/5235258) 
## EVENTS
*   ### [Securing the Untrusted Agentic Development Layer Join us to learn how to architect a development environment where your builders and their agents can move fast and securely.](https://intelligence.theregister.com/paper/view/20103)
*   ### [Toxic Flows: When Your AI Agent Skill Becomes a Supply Chain Attack When a developer installs an AI agent skill – granting it access to secured IT resources and data – they make a significant trust decision.](https://intelligence.theregister.com/paper/view/20145)
*   ### [The Hardware Crunch: How Supply Chain Turbulence Is Forcing a New IT Playbook Infrastructure teams are facing a perfect storm: extended hardware lead times, rising costs driven by AI demand, and accelerated platform timelines.](https://intelligence.theregister.com/paper/view/20113)
*   ### [Identity Resilience: The New Mandate for Cyber Survival Join Druva experts for a compelling deep dive into what it takes to build an identity-first recovery strategy in this new threat landscape.](https://intelligence.theregister.com/paper/view/20091)
*   ### [Identity Resilience: The New Mandate for Cyber Survival Join Druva experts for a compelling deep dive into what it takes to build an identity-first recovery strategy in this new threat landscape.](https://intelligence.theregister.com/paper/view/20101)
*   ### [Unfriendly Followers: The Black Market For Your Identity They’ll reveal how attackers use your profile as intel and show you how to make yourself harder to target](https://intelligence.theregister.com/paper/view/20135)
*   ### [AI Found the Problem. Now What? AI is transforming the software development lifecycle, helping teams identify and remediate vulnerabilities before they reach production.](https://intelligence.theregister.com/paper/view/20158)
[EXPLORE ALL OF OUR EVENTS](https://intelligence.theregister.com/events/list?_gl=1*8seb5h*_ga*NzgyNjE4NzEwLjE3NzExNzQ4MjA.*_ga_JXW44Y23NM*czE3NzY3NTY3MjIkbzEwNSRnMSR0MTc3Njc1Njg5NCRqOCRsMCRoMA..)
### [AI](https://beta.theregister.com/tag/ai)
*   [Security #### US bank reports itself after slinging customer data at 'unauthorized AI app' Volume and sensitivity of the data cited as chief concerns](https://www.theregister.com/security/2026/05/12/us-bank-reports-itself-after-ai-customer-data-mishap/5238787)
*   [Science #### SpaceX Starship completes Wet Dress Rehearsal, gets ready for launch Launch of Musk's monster rocket could be in May](https://www.theregister.com/science/2026/05/12/spacex-starship-completes-wet-dress-rehearsal-gets-ready-for-launch/5238767)
*   [Networks #### Lawsuit brought by former store operators missing from Vodafone results Former franchise operators claim telco unfairly cut commission and other payments](https://www.theregister.com/networks/2026/05/12/lawsuit-brought-by-former-store-operators-missing-from-vodafone-results/5238690)
*   [Databases #### NHS England confirms: Palantir staff can access patient data Tech firm's employees can get an 'admin' role letting them into the National Data Integration Tenant... and its identifiable information](https://www.theregister.com/databases/2026/05/12/nhs-england-confirms-palantir-staff-can-access-patient-data/5238712)
*   [AI + ML #### Frontier AI safety tests may be creating the very risks they're meant to stop Think tank warns outsider access to powerful models is governed by patchy controls and a hope nobody dangerous gets in](https://www.theregister.com/ai-ml/2026/05/12/frontier-ai-safety-tests-may-be-creating-the-very-risks-theyre-meant-to-stop/5238734)
### [Infosec](https://beta.theregister.com/security)
*   [Security #### US bank reports itself after slinging customer data at 'unauthorized AI app' Volume and sensitivity of the data cited as chief concerns](https://www.theregister.com/security/2026/05/12/us-bank-reports-itself-after-ai-customer-data-mishap/5238787)
*   [Science #### SpaceX Starship completes Wet Dress Rehearsal, gets ready for launch Launch of Musk's monster rocket could be in May](https://www.theregister.com/science/2026/05/12/spacex-starship-completes-wet-dress-rehearsal-gets-ready-for-launch/5238767)
*   [Networks #### Lawsuit brought by former store operators missing from Vodafone results Former franchise operators claim telco unfairly cut commission and other payments](https://www.theregister.com/networks/2026/05/12/lawsuit-brought-by-former-store-operators-missing-from-vodafone-results/5238690)
*   [Databases #### NHS England confirms: Palantir staff can access patient data Tech firm's employees can get an 'admin' role letting them into the National Data Integration Tenant... and its identifiable information](https://www.theregister.com/databases/2026/05/12/nhs-england-confirms-palantir-staff-can-access-patient-data/5238712)
*   [AI + ML #### Frontier AI safety tests may be creating the very risks they're meant to stop Think tank warns outsider access to powerful models is governed by patchy controls and a hope nobody dangerous gets in](https://www.theregister.com/ai-ml/2026/05/12/frontier-ai-safety-tests-may-be-creating-the-very-risks-theyre-meant-to-stop/5238734)
### [FOSS](https://beta.theregister.com/tag/FOSS)
*   #### [Frontier AI safety tests may be creating the very risks they're meant to stop Think tank warns outsider access to powerful models is governed by patchy controls and a hope nobody dangerous gets in](https://www.theregister.com/ai-ml/2026/05/12/frontier-ai-safety-tests-may-be-creating-the-very-risks-theyre-meant-to-stop/5238734)
*   #### [Cache-poisoning caper turns TanStack npm packages toxic Six-minute supply chain blitz pushed 84 malicious versions with credential theft and disk-wiping code](https://www.theregister.com/cyber-crime/2026/05/12/cache-poisoning-caper-turns-tanstack-npm-packages-toxic/5238650)
*   #### [EU browser choice rules send millions more users Firefox's way Mozilla claims the Digital Markets Act delivered lasting bump, invites Britain to do similar](https://www.theregister.com/software/2026/05/12/eu-law-bestows-6m-more-firefox-users-upon-us-moz-says/5238623)
*   #### [Microsoft makes Copilot easier to summon, harder to ignore in Office It looks like you're trying to get more Microsoft 365 users to engage with your assistant. Would you like help?](https://www.theregister.com/personal-tech/2026/05/12/microsoft-makes-copilot-easier-to-summon-harder-to-ignore-in-office/5238612)
*   #### [Windows update prompt joins the Post Office queue Customers left staring at restart plea with no keyboard, mouse, or hope](https://www.theregister.com/offbeat/2026/05/12/windows-update-prompt-joins-the-post-office-queue/5238531)
*   #### [Apple, Google drag cross-platform texting into the encrypted age After years of stopping dead at the green bubble border, iPhone and Android users can finally send E2EE messages without relying on third-party apps](https://www.theregister.com/security/2026/05/12/apple-google-drag-cross-platform-texting-into-the-encrypted-age/5238556)
## [FEATURES](https://www.theregister.com/tag/features?_gl=1*esekfm*_ga*NzgyNjE4NzEwLjE3NzExNzQ4MjA.*_ga_JXW44Y23NM*czE3NzY3NTY3MjIkbzEwNSRnMSR0MTc3Njc1Njg5NCRqOCRsMCRoMA..)
*   [![Image 11](https://image.theregister.com/?imageId=5237381&panoy=0&panox=0&panow=100&panoh=100&heightw=100&heighth=100&heighty=0&heightx=0&width=530&height=238&format=webp)### Europe wants out from under US tech – but first it has to find the exits](https://www.theregister.com/public-sector/2026/05/11/europe-wants-out-from-under-us-tech-but-first-it-has-to-find-the-exits/5234898)
*   [![Image 12](https://image.theregister.com/?imageId=5219524&panoh=71.67&panoy=12.5&panox=0&panow=100&heighty=0&heightx=40.45&heightw=41.43&heighth=100&width=530&height=238&format=webp)### GNOME may rule Ubuntu Resolute Raccoon, but X.org isn't roadkill yet](https://www.theregister.com/oses/2026/05/06/gnome-may-rule-ubuntu-resolute-raccoon-but-xorg-isnt-roadkill-yet/5219477)
*   [![Image 13](https://image.theregister.com/?imageId=232540&width=530&height=238&format=webp)### OpenClaw, but in containers: Meet NanoClaw](https://www.theregister.com/software/2026/03/01/openclaw-but-in-containers-meet-nanoclaw/4932592)
*   [![Image 14](https://image.theregister.com/?imageId=4094240&width=530&height=238&format=webp)### Open source registries don't have enough money to implement basic security](https://www.theregister.com/security/2026/02/16/open-source-registries-underfunded-as-security-costs-rise/5168909)
*   [![Image 15](https://image.theregister.com/?imageId=4094152&width=530&height=238&format=webp)### Contain your Windows apps inside Linux Windows](https://www.theregister.com/software/2026/02/14/contain-your-windows-apps-inside-linux-windows/4334445)
*   [![Image 16](https://image.theregister.com/?imageId=253705&width=530&height=238&format=webp)### The Linux mid-life crisis that's an opportunity for Tux-led transformation](https://www.theregister.com/software/2026/02/09/linux-mid-life-crisis-a-tux-led-transformation-chance/4856690)
*   [![Image 17](https://image.theregister.com/?imageId=246863&width=530&height=238&format=webp)### Too much AI for some, too little for others: Why AMD can't win with investors](https://www.theregister.com/on-prem/2026/02/04/why-amds-q1-outlook-is-giving-wall-street-jitters/4464981)
*   [![Image 18](https://image.theregister.com/?imageId=226970&width=530&height=238&format=webp)### How agentic AI can strain modern memory hierarchies](https://www.theregister.com/special-features/2026/01/28/how-agentic-ai-strains-modern-memory-hierarchies/4429527)
*   [![Image 19](https://image.theregister.com/?imageId=249085&width=530&height=238&format=webp)### 'Ralph Wiggum' loop prompts Claude to vibe-clone commercial software for $10 an hour](https://www.theregister.com/special-features/2026/01/27/ralph-wiggum-loop-prompts-claude-to-vibe-clone-software/4211889)
*   [![Image 20](https://image.theregister.com/?imageId=222400&width=530&height=238&format=webp)### How one developer used Claude to build a memory-safe extension of C](https://www.theregister.com/software/2026/01/26/dev-used-claude-to-build-trapc-memory-safe-extension-of-c/4132586)
✕
![Image 21: Logo](https://www.theregister.com/files/2025/10/15/The_register_full_icon_white.svg)
Biting the hand that feeds IT
## About Us
[Contact us](https://www.theregister.com/profile/contact)
[Advertise with us](https://situationpublishing.com/contact/)
[Who we are](https://www.theregister.com/profile/about_the_register)
## Our Websites
[The Next Platform](https://www.nextplatform.com/)
[DevClass](https://devclass.com/)
[Blocks and Files](https://blocksandfiles.com/)
[Situation Publishing](https://situationpublishing.com/)
## Your Privacy
[Cookies Policy](https://www.theregister.com/Profile/cookies)
[Privacy Policy](https://www.theregister.com/profile/privacy)
[Ts & Cs](https://www.theregister.com/profile/terms_and_conditions_of_use)
[Do not share my personal information](https://www.theregister.com/Profile/privacy_policy_california_residents/)
[Your Consent Options](https://www.theregister.com/profile/terms_and_conditions_of_use)
## Archives
[27 years of articles](https://www.theregister.com/archive)
![Image 22: Situation Publishing Logo](https://beta.theregister.com/files/2025/10/09/SituationPublishing_Logo_Evolution_Twolines-White-Barlow%20(1).svg)
Copyright. All rights reserved © 1998-2026.