SN 1083: Patch Tuesday à la AI - Arch Linux Repo Under Siege
Security Now (Audio)
Leo Laporte
4.6 • 2.3K Ratings
🗓️ 16 June 2026
⏱️ 156 minutes
🧾️ Download transcript
Summary
This episode unpacks the jaw-dropping surge in vulnerabilities unearthed by AI, revealing how Microsoft shattered its own patch records while adversaries and defenders race to outpace each other. The conversation gets real about whether AI is fixing our broken software or just making attacks easier for everyone.
- Rootkits found in more than 400 ArchLinux User Repository packages.
- The US government requests Anthropic to remove Mythos and Fable.
- CISA responds to AI-driven attacks with new patching requirements.
- NPM to switch to more secure install defaults. Will it help.
- Our listeners react to last week's PHP commentary.
- June shows that AI has arrived for vulnerability discover
Show Notes - https://www.grc.com/sn/SN-1083-Notes.pdf
Hosts: Steve Gibson and Leo Laporte
Download or subscribe to Security Now at https://twit.tv/shows/security-now.
You can submit a question to Security Now at the GRC Feedback Page.
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Join Club TWiT for Ad-Free Podcasts!
Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit
Sponsors:
Transcript
Click on a timestamp to play from that location
| 0:00.0 | It's time for security now. Steve Gibson is here and he's raring to go. |
| 0:04.9 | There are more supply chain attacks to talk about, including on the Arch Linux user repository, NPM. |
| 0:11.6 | They're going to try to make that a little bit more secure. |
| 0:14.0 | Steve has some recommendations until they do. |
| 0:17.5 | And June shows that AI has arrived for vulnerability discovery. We'll talk about that and a whole |
| 0:24.2 | lot more next on Security Now. Podcasts you love from people you trust. This is Twitter Now. |
| 0:38.7 | This is Security Now with Steve Gibson, episode 1883, recorded Tuesday, June 16th, 2026. |
| 0:47.2 | Patch Tuesday a la AI. |
| 0:50.0 | It's time for security now. |
| 0:53.0 | The show we cover the latest in security privacy and all that stuff online with the man, the myth, the legend, but not the mythos. |
| 1:01.0 | Mr. Steve Gibson. |
| 1:03.0 | No mythos for you. |
| 1:05.2 | That's true. |
| 1:05.8 | No fable here. |
| 1:07.2 | No fable either. |
| 1:08.8 | Wow. |
| 1:09.4 | Wow. |
| 1:09.8 | Crazy. |
| 1:10.1 | What a story. |
| 1:16.0 | Yeah. I'm going to gonna share anthropics response and then we'll do a little editorializing around that because that was an interesting weirdness um so uh last tuesday was |
| 1:27.4 | june's patch tuesday oh and bold So last Tuesday was June's Patch Tuesday. |
| 1:30.0 | And boy, did we break records. |
... |
Transcript will be available on the free plan in 26 days. Upgrade to see the full transcript now.
Disclaimer: The podcast and artwork embedded on this page are from Leo Laporte, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of Leo Laporte and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2026.