Tech Bytes Logo Tech Bytes
Home / Tech Pulse / Mar 27, 2026
Evening Edition AI/Security March 27, 2026

Tech Pulse — Mar 27, 2026

Anthropic's secret Mythos model exposed, Langflow RCE exploited in under 20 hours, ChatGPT ads cross $100M ARR, and Harvey AI hits $11B.

Dillip Chowdary

Dillip Chowdary

Founder & AI Researcher • March 27, 2026

Today's Top Highlights

  • 🚨 DOUBLE ZERO-DAY: Cisco FMC CVE-2026-20131 (CVSS 10.0) ransomware-exploited + Langflow CVE-2026-33017 (CVSS 9.3) RCE — patch both today.
  • 🛡️ Patch Tuesday: Microsoft fixes 79 CVEs including 2 actively exploited zero-days — update Windows dev environments immediately.
  • 🤫 Anthropic Mythos leaked via internal breach — described as "step change" over Opus 4.6 on coding and cybersecurity; $60B+ IPO eyed for Oct 2026.
  • 💰 Harvey AI $200M at $11B — legal AI serves 100K+ lawyers; ChatGPT Ads cross $100M ARR in under 2 months.
  • 🆓 Gemini Code Assist now free for all individual devs in VS Code + JetBrains; Mistral Voxtral TTS open-sourced with 9-language support.

🚨 CRITICAL: Langflow RCE (CVE-2026-33017) Exploited Within 20 Hours

A critical unauthenticated remote code execution vulnerability in Langflow — the popular open-source AI pipeline builder — is being actively exploited. Sysdig researchers confirmed attackers began exploitation just 20 hours after public disclosure via a single HTTP request, no credentials required.

  • CVSS Score: 9.3 (Critical) — unauthenticated, single-request RCE on the public flow API endpoint.
  • Attack vector: /api/v1/build_public_tmp/{flow_id}/flow — accessible without authentication.
  • Impact: Attackers exfiltrating API keys, database credentials, and LLM provider tokens from compromised AI pipelines.
  • CISA KEV: Added March 25 — federal agencies must patch by April 8, 2026.

⚠️ Developer Action Required — Patch Immediately

pip install langflow==1.9.0
# Verify: langflow --version
  • Rotate all API keys stored in Langflow environments — assume compromised if exposed.
  • Disable public flow endpoints if not in use (LANGFLOW_PUBLIC_FLOWS_ENABLED=false).
  • Review access logs for requests to /api/v1/build_public_tmp/.

Full technical analysis on The Hacker News →

Anthropic's Secret "Mythos" Model Leaked — Outperforms Opus 4.6

An internal data leak at Anthropic exposed approximately 3,000 draft blog assets, accidentally revealing the existence of a next-generation model codenamed Mythos (internal tier: "Capybara"). Anthropic confirmed the model is real — calling it "the most capable we've built to date."

  • Benchmark claims: Dramatically outperforms Claude Opus 4.6 on coding, academic reasoning, and cybersecurity evaluations.
  • Security researchers flagged its offensive cybersecurity capabilities as posing "unprecedented" risk — suggesting frontier-level red-teaming ability.
  • Status: Limited early-access trials only — no public release date announced.
  • Context: Leak came alongside news Anthropic is weighing a $60B+ IPO as early as October 2026.

Fortune: Anthropic Mythos leak details →

ChatGPT Ads Pilot Crosses $100M ARR in Under 2 Months

OpenAI's advertising pilot — launched for Free and Go tier ChatGPT users in the US — has crossed $100M in annualized recurring revenue with over 600 advertisers onboard. The speed of adoption signals strong advertiser demand for AI-native placements.

  • Ad design: Visually separated from AI responses, conversations remain private from advertisers.
  • Tiers excluded: Plus, Pro, Business, Enterprise, and Education remain ad-free.
  • Business model shift: Signals OpenAI diversifying revenue beyond API and subscriptions ahead of potential IPO.
  • Competitive pressure: Google already monetizes Gemini via Search advertising infrastructure — OpenAI is catching up fast.

CNBC: ChatGPT ad pilot details →

Developer Tools: Gemini Code Assist Goes Free + Claude Code Channels

Two significant developer tool updates landed this week, shaking up the AI coding assistant market dominated by GitHub Copilot and Cursor.

  • Gemini Code Assist free for individuals: Google made the full VS Code and JetBrains IDE plugin free, backed by Gemini 3.1 Flash-Lite (2.5x faster, $0.25/M input tokens). Direct Copilot competitor at $0.
  • Claude Code Channels: Anthropic shipped Telegram and Discord integration for Claude Code — enabling async agentic coding from your phone without an active IDE session.
  • Spring AI CVE-2026-22738: SpEL injection in SimpleVectorStore — trivially reachable in RAG pipelines. No patch yet; monitor official Spring Security advisories.

VentureBeat: Claude Code Channels deep dive →

Funding: Harvey AI $200M at $11B, Anthropic Eyes $60B+ IPO

Capital is flowing at unprecedented velocity into AI in late March — two headline deals show the market's confidence in frontier AI applications.

  • Harvey AI — $200M / $11B valuation: Co-led by GIC and Sequoia, with a16z, Coatue, and Kleiner Perkins participating. Total funding now exceeds $1B. Harvey serves 100,000+ lawyers at 1,300 organizations including BigLaw and enterprise legal teams.
  • Anthropic IPO: Bloomberg reports Anthropic is weighing an October 2026 IPO at $60B+ valuation. Goldman Sachs, JPMorgan, and Morgan Stanley expected to lead. Races alongside OpenAI's own IPO discussions.
  • Anthropic DOD ruling: A federal judge granted Anthropic a preliminary injunction against the Pentagon, citing First Amendment retaliation — a significant legal shield for AI companies contracting with the US government.

Harvey AI: $11B raise announcement →

Cloud: GCP March 26 GA Releases

Google Cloud pushed several generally available updates developers should know about this week.

  • Gemini Enterprise for Drive: GA — analyze CSV, PDF, PPTX, XLSX files directly from Google Drive connectors without manual upload.
  • BigQuery → Spanner reverse ETL: GA via EXPORT DATA statements — stream BigQuery results directly into Spanner.
  • Compute Engine G4 series GA: NVIDIA Omniverse simulations, video transcoding, and single-host LLM inference workloads.

🔴 Infrastructure DEFCON: Cisco CVSS 10.0 + Microsoft Patch Tuesday (79 CVEs)

March 27 closes with a double critical infrastructure alert. Cisco Firepower Management Center (CVE-2026-20131) has been weaponized by the Interlock ransomware group — achieving unauthenticated root access via insecure Java deserialization. Simultaneously, Microsoft's March 2026 Patch Tuesday drops 79 fixes including 2 actively exploited zero-days.

  • CVE-2026-20131 (Cisco FMC) — CVSS 10.0: Unauthenticated RCE as root via insecure deserialization; Interlock ransomware active since January 26 — only disclosed today. Affects FMC 7.2–7.4.
  • CVE-2026-20127 (Cisco SD-WAN) — CVSS 10.0: Unauthenticated admin bypass exploited since 2023; added to CISA KEV catalog — federal patch deadline in effect.
  • Microsoft Patch Tuesday — 79 CVEs, 2 zero-days: Affects Windows kernel, Remote Desktop, and Exchange. Update all Windows-based dev/build servers today.
  • Node.js Security Releases (March 24): Security-focused patches issued for active LTS lines — update via nvm install --lts or your version manager.

⚠️ Infrastructure Patch Checklist — Today

  • Patch Cisco FMC to latest 7.4.x — isolate management plane if patch delay is unavoidable.
  • Apply Cisco SD-WAN updates; check CISA KEV for your deadline.
  • Run Windows Update on all developer and build machines — 2 zero-days actively exploited.
  • Update Node.js LTS — node --version should show the March 24 release.

The Hacker News: Cisco FMC CVE-2026-20131 ransomware exploitation →

💱 Currency & Crypto Snapshot

1 USD = ₹83.47
↓ 0.08% from yesterday

INR steady near 3-month average; RBI holding rates through Q2 2026.

BTC
$87,240
+1.2%
ETH
$4,180
+0.9%
DOGE
$0.1923
-0.3%
SHIB
$0.0000241
+2.1%

Share this article:

🚀 Tech News Delivered Daily

Stay ahead of the curve with our daily tech briefings.