AI & Tech News Digest — 2026-04-25

Highlights

Google to invest up to $40B in Anthropic in cash and compute: Google commits one of the largest AI capital deals yet, following the limited release of Anthropic’s cybersecurity-focused Mythos model.
FIRESTARTER backdoor survives Cisco firewall patches on federal device: CISA and NCSC warn that a custom backdoor persisted through updates on a U.S. federal agency’s Cisco Firepower appliance, raising urgent supply-chain and patch-integrity concerns.
How Project Maven taught the military to love AI: In the first 24 hours of the Iran assault, AI-driven targeting helped the U.S. strike over 1,000 targets — nearly double the pace of “shock and awe.”
GPT-5.5 tops benchmarks but still hallucinates and costs 20% more: OpenAI retakes the benchmark crown with GPT-5.5, though chief scientist Jakub Pachocki calls recent progress “surprisingly slow” and promises bigger leaps ahead.
ComfyUI hits $500M valuation as creators seek control over AI media: The open-source node-based generative media tool raised $30M amid growing demand for creator-controlled image, video, and audio pipelines.

Glasswing Secured the Code. The Rest of Your Stack Is Still on You (Dark Reading): Argues that forgotten integrations, shadow IT, SaaS, and now shadow AI and agents expose organizations — attackers don’t need sophisticated models to exploit them.
Google to invest up to $40B in Anthropic in cash and compute (TechCrunch): Deal arrives alongside the limited release of Anthropic’s cybersecurity-focused Mythos model, deepening the AI-security tie-up between the two firms.
NASA employees duped in Chinese phishing scheme targeting U.S. defense software (The Hacker News): NASA OIG details how a Chinese national posed as a U.S. researcher in a multi-year spear-phishing campaign against the agency, universities, and defense contractors.

AI industry & products

Meta’s loss is Thinking Machines’ gain (TechCrunch): Meta has been poaching from Thinking Machines Lab — but the talent pipeline is flowing both ways.
OpenAI’s chief scientist says AI progress has been “surprisingly slow” (The Decoder): Jakub Pachocki promises “extremely significant improvements” in the medium term following the GPT-5.5 launch.
GPT-5.5 tops benchmarks but still hallucinates (The Decoder): New model leads benchmarks, but hallucination rates remain high and API pricing rises 20%.
ComfyUI hits $500M valuation (TechCrunch): $30M round reflects demand for creator-controllable generative media.
8 Gemini tips for organizing your space (and life) (Google AI Blog): Consumer-oriented productivity examples showcasing Gemini Live and document/email workflows.
Marked-up Mac minis flood eBay amid AI-driven shortages (TechCrunch): The Mac mini is being resold at premiums as demand surges for local AI model hosting.

AI in defense

How Project Maven taught the military to love AI (The Verge): Maven Smart System accelerated U.S. targeting to over 1,000 strikes in the first 24 hours against Iran.

Apple transition

Apple’s new CEO, and why Elon Musk wants to buy Cursor for $60B (TechCrunch): Tim Cook to step down in September; hardware chief John Ternus inherits a very different ecosystem.
Tim Cook is stepping down. What happens to Apple now? (TechCrunch): Video breakdown of the succession and pressure on the App Store’s 30% cut.
AirPods, Touch Bars, and the rest of Tim Cook’s legacy (The Verge): Vergecast on the Cook-to-Ternus handover and what it could mean for Apple’s next decade.

Cybersecurity

Firestarter malware survives Cisco firewall updates (BleepingComputer): U.S. and U.K. agencies warn that Firestarter persists on Cisco Firepower/ASA devices through patching.
FIRESTARTER backdoor hit federal Cisco Firepower device (The Hacker News): CISA confirms a federal civilian agency’s device was compromised in September 2025 and remained infected through updates.
New ‘Pack2TheRoot’ flaw gives hackers root Linux access (BleepingComputer): Local privilege-escalation vulnerability in the PackageKit daemon enables unauthorized package install/removal as root.
New BlackFile extortion group linked to surge of vishing attacks (BleepingComputer): Financially-motivated crew has hit retail and hospitality targets since February 2026 with data theft plus extortion.
Windows Update gets new controls to reduce forced restarts (BleepingComputer): Microsoft gives users more say over when updates install and reboot.
Microsoft to roll out Entra passkeys on Windows in late April (BleepingComputer): Phishing-resistant passwordless auth arrives for Entra-protected resources from Windows devices.
Why are top university websites serving porn? (Ars Technica): Dangling CNAME records let scammers hijack hundreds of university subdomains.
US busts Myanmar ring targeting U.S. citizens in financial fraud (Dark Reading): 29 people charged — including a Cambodian senator — with over 500 fake-investment domains seized.

DORA and operational resilience: Credential management as a financial risk control (BleepingComputer): Article 9 of DORA makes authentication and access control a legal obligation for EU financial entities — a look at what compliance and breach look like under the regulation.

AI-defense integration matures: Project Maven’s role in the Iran assault and Anthropic’s cybersecurity-focused Mythos model both signal that the AI-national-security fusion is now operational, not theoretical.
Compute is the new moat: Google’s $40B Anthropic commitment and the Mac mini shortage driven by local-AI hobbyists show compute — from hyperscale to desktop — as the binding constraint on AI deployment.
Patch integrity under pressure: Two FIRESTARTER advisories in one day underscore that even federal-grade firewalls can harbor backdoors that survive official updates — a pointed supply-chain warning.
Regulatory tightening in financial services: DORA’s Article 9 moves credential management from best-practice to legal mandate across EU finance, foreshadowing broader auth/identity compliance regimes.
Apple’s post-Cook era: The Ternus transition lands as the App Store’s 30% cut, AI positioning, and hardware strategy all face simultaneous pressure.
GenAI creator tools go mainstream: ComfyUI’s $500M valuation reflects a market demanding more fine-grained, controllable AI media pipelines, not just one-shot prompts.

For detailed summaries of selected research papers, see papers.md.