Infrastructure Under Pressure ⚡, AI’s Plumbing Layer Expands 🔧, Securing the AI Stack ⚙️

Q: Google confirmed that criminals used AI to build a working zero-day exploit that bypassed two-factor

Google confirmed that criminals used AI to build a working zero-day exploit that bypassed two-factor authentication in a widely used sysadmin tool.

Q: OpenAI acquired UK-based AI consultancy Tomoro to deepen enterprise deployment capabilities and offe

OpenAI acquired UK-based AI consultancy Tomoro to deepen enterprise deployment capabilities and offered EU cybersecurity tool access via the EU Cyber Action Plan.

Q: Amazon launched Amazon Supply Chain Services (ASCS) opening its logistics network to all businesses,

Amazon launched Amazon Supply Chain Services (ASCS) opening its logistics network to all businesses, with Procter & Gamble, 3M, and Lands' End already onboard.

TLDR·Tuesday, May 12, 2026·5 min read

Technology AI/ML Engineering

Share𝕏 in

AI Summary

This TLDR IT edition covers the expanding threat surface of AI-enabled cyberattacks, including a confirmed zero-day exploit built with AI assistance. Major infrastructure moves include US Bank migrating critical apps to AWS for AI workloads and Amazon opening its supply chain network to all businesses. OpenAI is deepening enterprise reach by acquiring UK consultancy Tomoro and offering EU cybersecurity tool access.

Key Facts

✓Google confirmed that criminals used AI to build a working zero-day exploit that bypassed two-factor authentication in a widely used sysadmin tool.

✓OpenAI acquired UK-based AI consultancy Tomoro to deepen enterprise deployment capabilities and offered EU cybersecurity tool access via the EU Cyber Action Plan.

✓Amazon launched Amazon Supply Chain Services (ASCS) opening its logistics network to all businesses, with Procter & Gamble, 3M, and Lands' End already onboard.

Author Takes

BearishTLDR IT

Sovereign Cloud

Fully sovereign cloud is only realistic for China or the US, making European efforts to reduce dependency on American hyperscalers largely impractical.

SkepticalTLDR IT

Anthropic Mythos security model

Anthropic's bug-hunting Mythos model looked more like marketing than a major security breakthrough after finding only one low-severity cURL issue.

BearishTLDR IT

AI Gateways and MCP Gateways

Neither AI gateways nor MCP gateways provide full session-level behavioral context, leaving security teams exposed to complex multi-step agentic attack chains.

Contrarian Angle

AWS replacing On-premise / legacy cloud infrastructure

US Bank is shifting critical applications to AWS to modernize infrastructure for AI workloads.

Engineers switching from On-premise / legacy cloud infrastructure to AWS

More from TLDR

Opus 4.7 Fast ⚡, Qwen Image 2.0 🖼️, serverless GPUs ✨

TLDR AI covers the launch of fast mode for Claude Opus 4.7 in research preview, Meta's Muse Spark model powering voice and glasses features, and Googl

May 13

CheckMarx Jenkins Hit ⚙️, OpenAI Daybreak 🤖, Best Western Breached 🏨

This cybersecurity newsletter covers a supply-chain attack on CheckMarx's Jenkins plugin by TeamPCP, a Shai-Hulud npm worm that compromised 42 @tansta

May 13

The Agent Mess Gets Real 🤖, Cyber Gets Autonomous ⚔️, Cloud’s New Pitch 🏗️

This TLDR IT edition covers OpenAI's new Daybreak cybersecurity initiative, a $125M Series B for AI security startup Exaforce, and GitLab's org restru

May 13