Frontier LLMs are now scary good at finding exploits. I think it's safe to assume that all major software is now under attack/being actively exploited by these LLMs:

“TL;DR: LLMs can autonomously, and without fancy scaffolding, find and exploit Odays in critical software.”

“And this means that the nice balance we had between attackers and defenders over the last 20 years or so seems like it's probably coming to an end, and it really seems to me the language models that we have now are probably the most significant thing to happen in security since we got the internet.”

“I think you know these next couple of months will really be some of the most important couple of months for security.”

- Nicholas Carlini, Black-hat LLMs | [un]prompted 2026