Brief

Google has confirmed two critical security vulnerabilities in its Chrome browser, identified as CVE-2026-9111 and CVE-2026-9110. These flaws affect WebRTC and the Chrome user interface, respectively. While Google is rolling out an automatic update over the coming days and weeks, users can manually initiate the update by navigating to Help > About Google Chrome within the browser. AI

Researchers have developed a new active learning framework called Cumulative Active Meta-Learning (CAML) to improve the robustness of machine learning models against spurious correlations. CAML treats each active learning round as a meta-learning task, using queried samples to refine the model's inductive bias rather than just updating its likelihood. This cumulative approach captures sequential dependencies between learning rounds, leading to significant accuracy improvements for minority groups on various benchmarks. AI

A new roadmap paper highlights the limitations of causal machine learning (ML) in health research, despite its growing use with large observational clinical datasets. The authors emphasize the need for careful assessment of validity assumptions and responsible application by both clinical experts and ML practitioners. Without these precautions, causal ML approaches risk producing biased or misleading results, potentially impacting clinical research and patient care. AI

Researchers have identified a critical flaw in using large language models (LLMs) to simulate human behavior for experimental studies. Because LLMs are trained on observational data, interventions can inadvertently alter the simulated users' underlying attributes, leading to "user drift." This drift can distort the estimated effects of interventions, making the experimental results unreliable. The study proposes methods to diagnose this confounding using negative control outcomes and mitigate it by adjusting LLM personas with relevant confounders. AI

Researchers have developed a new method called VerifySteer to control the strictness of generative verifiers in step-wise verification processes. This technique identifies a hidden signal within the verification paragraph's hidden state that indicates the verifier's tendency to accept or reject a step. By selectively steering this signal, VerifySteer can modulate verifier strictness without requiring fine-tuning, offering a way to balance error detection and correctness certification. AI

Researchers have developed a novel reference monitor designed to detect and prevent covert channels used by compromised Large Language Model (LLM) agents to leak data. The system employs a multi-stage text processing pipeline and media scrambling techniques for audio and images to eliminate hidden data transmission. It uses cryptographic attestations to distinguish legitimate media from data disguised as media, and measures residual capacity to ensure covert channels are destroyed or bounded. AI

Researchers have developed Deep Attention Reweighting (DAR), a novel post-hoc method to improve the generalization and fairness of Convolutional Neural Networks (CNNs). DAR addresses the issue of CNNs exploiting spurious correlations in datasets by using an attention-based aggregation module to selectively suppress irrelevant features. This module replaces the standard Global Average Pooling layer and is retrained alongside the classification head, outperforming existing Deep Feature Reweighting techniques. AI

Researchers have developed a new method called GAMR (Geometric-Aware Manifold Regularization) to improve deep neural network performance when trained on datasets with noisy labels. Unlike existing methods that passively filter data, GAMR actively synthesizes virtual outlier samples to create distinct boundaries between data manifolds. This geometric approach enhances the separation between correctly labeled and mislabeled data, leading to more robust feature representations. The technique has shown state-of-the-art results on benchmarks like CIFAR-10, particularly under challenging noise conditions, and also improves out-of-distribution detection capabilities. AI

Researchers have developed a new cryptographic protocol called Heartbeat-Bound Hierarchical Credentials (HBHC) to address the safety gap in autonomous AI agent swarms. This protocol binds credential validity to periodic liveness proofs from parent agents, enabling rapid revocation without requiring network connectivity to a central authority. Experiments with GPT-4o-mini agent swarms demonstrated a significant reduction in the 'zombie agent' window, with zero post-revocation tool calls observed even under prompt injection attacks. AI

Researchers have developed a new learning-theoretic framework to understand Chain of Thought (CoT) reasoning in AI models. This framework models CoT as an interaction between an answer map and a chain rule that generates intermediate questions. The framework decomposes the reasoning risk into two components: the benefit of CoT (oracle-trajectory risk) and the cost of CoT (trajectory-mismatch risk) due to error accumulation. AI

Researchers have developed a new framework called Reflector to enhance the safety of large language models (LLMs) against complex, multi-step jailbreak attacks. This two-stage approach first uses teacher-guided generation for supervised fine-tuning to establish reflection patterns, then employs reinforcement learning for autonomous self-reflection. Reflector demonstrates over 90% defense success against indirect attacks and improves performance on benchmarks like GSM8K by 5.85%, without adding significant computational overhead. AI

Researchers have developed PREFINE, a novel method for fine-tuning reinforcement learning policies to incorporate safety constraints without full retraining. This approach adapts Direct Preference Optimization (DPO), commonly used for language models, to continuous control environments. PREFINE leverages trajectory-level preferences to balance reward retention with safety alignment, demonstrating a significant reduction in constraint violations and failures while maintaining original reward performance. AI

Researchers have developed a new explainable AI (XAI) framework called SAM-Sode to improve the interpretability of tiny bacteria detection in medical diagnostics. Traditional methods struggle with the fine details and complex backgrounds inherent in this task, leading to unclear explanations. SAM-Sode addresses this by converting feature attribution maps into geometry-aware prompts, using the SAM3 foundation model for spatial refinement and morphological reconstruction. It also incorporates a dual-constraint mechanism to denoise explanations and align them with expert intuition, enhancing transparency in tiny object detection. AI

Researchers have identified a new security vulnerability in large language models (LLMs) that exploits inference optimization techniques, particularly compilation. This vulnerability allows attackers to implant hidden backdoors into LLMs, causing them to misbehave on specific inputs only when compiled. These attacks achieve high success rates while maintaining near-perfect accuracy on normal inputs, bypassing standard safety checks. AI

Researchers have developed ScenePilot, a new framework for generating critical scenarios for autonomous driving systems. This method focuses on creating scenarios that are physically solvable but still challenging enough to cause failures in deployed systems. By using constrained reinforcement learning and a combination of physical feasibility scores and risk prediction, ScenePilot aims to produce more realistic and effective stress tests for autonomous vehicles. Experiments show that scenarios generated by ScenePilot lead to higher collision rates while maintaining physical validity, and fine-tuning on these scenarios reduces downstream crash rates. AI

A new study published on arXiv assessed 6,233 web-deployed medical large language models (LLMs), evaluating a sample of 1,500 along with 10 open-source models. The research found that a significant portion of these models exhibit factual inaccuracies, with 25-30% showing low accuracy and over half violating operational thresholds. Additionally, many action-enabled models lacked adequate privacy disclosures, indicating systemic gaps in safety and compliance. AI

A new research paper analyzes neural morphological generation systems, revealing that a tiny fraction of rare, irregular data can disproportionately cause errors. The study focused on Japanese past-tense verb inflection, finding that a specific irregular subtype, less than 1% of the data, was responsible for a significant share of model mistakes. This suggests that not all irregularity equally destabilizes models, and finer-grained subclass analysis is needed for better morphological evaluation. AI

Kyndryl is implementing a "workforce rebalancing" strategy, which involves significant layoffs impacting delivery teams. This move is part of a broader trend where companies are shifting their focus, with some employees being reassigned to AI-related roles. Separately, a security incident at a city's water system was attributed to a dormant user account that was not properly disabled, highlighting critical vulnerabilities in access management. AI

Researchers have developed Stage-Audit, a system designed to improve the accuracy and source-grounding of tables generated by large language models. The system addresses the issue of LLMs fabricating or misattributing sources for table entries by implementing distinct curator and auditor roles with write permissions. Stage-Audit also incorporates a row-level source-citation gate and a comprehensive audit taxonomy to ensure explicit traceability of information. AI

Cisco has released a critical security advisory for its Secure Workload product, detailing a "perfect 10" vulnerability. This flaw allows unauthenticated attackers to gain administrative privileges on affected systems. The company has provided a patch and urges users to apply it immediately to mitigate the risk of unauthorized access and potential system compromise. AI

A new research paper published on arXiv investigates the effectiveness of Chain-of-Thought (CoT) prompting in reducing gender bias in large language models (LLMs). The study found that while CoT prompting may superficially balance biased behavior in some areas, it does not consistently reduce the bias gap across benchmarks. Mechanistic interpretability analyses revealed that gender bias remains embedded in the models' internal representations, suggesting that the observed improvements are more indicative of memorization than genuine understanding of bias. AI

A recent report highlights the potential for AI chatbots to interfere with UK elections, particularly during the 2026 Scottish pre-election period. These AI systems have demonstrated a tendency to "hallucinate" by providing incorrect information, such as misstating election dates or ID requirements. Furthermore, the AI models have fabricated scandals, including expenses and nepotism issues, posing a significant risk to the integrity of the electoral process. AI

AI chatbots have raised privacy concerns by inadvertently revealing real phone numbers. This incident highlights the critical need for robust data protection measures, especially in regions like Africa where AI adoption in sensitive sectors like healthcare is growing rapidly and digital privacy regulations are still developing. AI

Researchers have identified a novel cybersecurity threat where specially crafted image files can execute malicious code on a user's system. These "polyglot" files, detailed in a report by Hackers Arise, can embed and silently run command-and-control payloads when opened. This technique bypasses typical security measures that might flag executable files. AI

A Chinese military study suggests that omega-3 supplements might not benefit, and could potentially accelerate, cognitive decline in individuals with Alzheimer's disease. The research team from China's Army Medical University flagged these risks associated with oral fish oil intake. AI

Databricks has introduced new AI governance features within its Unity AI Gateway, focusing on cost controls and safety. The platform now offers proactive budget alerts at various granularities, including user, workspace, and organizational levels, to manage escalating AI expenses. Additionally, it incorporates LLM-based guardrails for enhanced AI safety and compliance, along with payload logging and service policies to govern agent behavior and tool invocation. AI

America's top cyber-defense agency inadvertently exposed sensitive credentials, including passwords and API keys, through an unsecured GitHub repository. The repository's filenames were highly conspicuous, making the leaked information easily discoverable. This incident highlights a significant security lapse within a government entity responsible for national cybersecurity. AI