This is Bad.

Google's Threat Intelligence Group identified the first confirmed case of AI-generated hacking, where a malicious Python script exploits an open-source admin tool to bypass two-factor authentication. Google is highly confident in the AI origin due to the code's polite comments, textbook organization, and hallucinated danger rating. This signals a shift from AI aiding productivity to enabling digital attacks. In other news, Chinese camera maker Miari Technology was found broadcasting live feeds from 1.1 million baby monitors. Security researcher Sammy Asdal discovered an API key allowing access to any camera. Miari makes cameras for hundreds of brands. Asdal reported the vulnerability in March, facing initial dismissal and a veiled threat before Miari patched it in April. Apple announced impending price hikes as early as June due to significantly higher memory costs. Analysts suggest Apple may keep base iPhone 18 Pro/Pro Max prices stable, pushing cost increases to higher storage tiers and accessories to boost market share and services revenue. The FCC extended a software update waiver for foreign-made routers on its national security block list until 2029, allowing security updates to prevent larger cybersecurity risks. Venmo redesigned its app to default payments to friends and added a "shout out" button for public business endorsements. Valve appears to be implementing anti-scalper measures for the Steam Machine launch, mirroring its Steam controller reservation system. Microsoft is testing a low-latency profile in Windows 11, boosting CPU performance for faster app and menu launch times. Lastly, Dua Lipa is suing Samsung for $15 million, alleging unauthorized use of her likeness on TV boxes.