AI-Assisted Exploit Beats macOS M5 Memory Protections

Researchers disclosed the first public macOS kernel memory-corruption exploit on Apple’s M5 that bypasses Memory Integrity Enforcement (MIE). A team including noted security experts and the AI tool Mythos developed a local, data-only kernel privilege escalation against macOS 26.4.1 that elevates an unprivileged user to root. Built rapidly after April bug discoveries, the chain uses two vulnerabilities and techniques tailored to bare-metal M5 hardware to survive MTE-based MIE mitigations. The team privately informed Apple and will publish a detailed technical report after fixes. The case highlights how AI-assisted research can accelerate exploit development and challenge advanced hardware defenses.

Latest Changes

Researchers published the first public macOS kernel memory-corruption exploit on Apple M5.

Exploit chain bypasses Memory Integrity Enforcement (MIE) on macOS 26.4.1 to achieve local kernel privilege escalation.

Team used the AI tool Mythos to help build the exploit and tailored techniques to bare-metal M5 hardware.

Timeline

2026-04-01 — Researchers discovered initial M5 vulnerabilities used in the exploit chain.

2026-05-14 — Security researchers disclosed first public macOS kernel memory-corruption exploit working on M5 with MIE.

2026-05-14 — Team including noted experts produced a local, data-only kernel privilege escalation against macOS 26.4.1.

2026-05-15 — Reports revealed the research firm Calif used the AI tool Mythos to help build the exploit.

2026-05-15 — Researchers privately informed Apple and said a detailed technical report will follow after fixes.

Recent News (4)

Security research firm Calif says it used Mythos to help build a macOS kernel memory corruption exploit circumventing Apple's Memory Integrity Enforcement tech (Robert McMillan/Wall Street Journal)

Robert McMillan / Wall Street Journal : Security research firm Calif says it used Mythos to help build a macOS kernel memory corruption exploit circumventing Apple's Memory Integrity Enforcement tech — During tests in April, researchers found software issues in MacOS, one of the world's toughest targets for hackers

src_techmeme6d ago

First public macOS kernel memory corruption exploit on Apple M5

4pts

Lobsters6d ago

First public macOS kernel memory corruption exploit on Apple M5

Security researchers disclosed the first public macOS kernel memory-corruption exploit that works on Apple M5 silicon with MIE (Memory Integrity Enforcement) enabled. The team, including Bruce Dang, Dion Blazakis, Josh Maine and collaborator Mythos Preview, built a local data-only kernel privilege escalation against macOS 26.4.1 that starts from an unprivileged user and yields a root shell; they developed a working exploit in about five days after discovering bugs in late April. The chain uses two vulnerabilities and techniques targeting bare-metal M5 hardware and survives Apple’s MTE-based MIE mitigations. The group shared findings in person with Apple and plans to publish a 55-page technical report after fixes are released. This demonstrates AI-assisted exploit development paired with human expertise can bypass advanced hardware mitigations.

AI-Assisted Exploit Beats macOS M5 Memory Protections

Why It Matters

Latest Changes

Timeline

What to Watch

Recent News (4)