Model Lab Daily

Daily benchmarks, eval results, and lab notes from the people training the next generation of models.

Latest Analysis

Iran-Linked Hackers Target Medical Device Giant Stryker, Disrupting Windows Infrastructure

A cyberattack claimed by an Iranian-aligned group has disrupted Stryker’s Microsoft environment, raising concerns about retaliatory hacks following recent geopolitical…

Dec 4, 2025
Invisible Unicode Characters Enable Stealthy Supply-Chain Attacks on GitHub, NPM

Security researchers uncover 151 malicious packages using invisible Unicode code to evade detection in GitHub and other repositories, with AI…

Dec 1, 2025
IP KVM Security Flaws Expose Networks to Physical-Level Attacks

Eclypsium researchers reveal nine vulnerabilities in IP KVMs from four manufacturers, allowing unauthenticated root access and code execution, highlighting fundamental…

Nov 28, 2025
FedRAMP Approved Microsoft’s GCC High Cloud Despite Internal Security Warnings Labeled ‘Pile of Shit’

Internal government reports from 2024 reveal cybersecurity evaluators called Microsoft’s GCC High cloud a ‘pile of shit’ due to inadequate…

Nov 25, 2025
Cloud Providers File EU Antitrust Complaint Over Broadcom’s VMware Partner Cuts

A trade group for cloud service providers has lodged an antitrust complaint with the European Commission, targeting Broadcom’s termination of…

Nov 22, 2025
Trivy Vulnerability Scanner Compromised in Supply Chain Attack, Pipeline Secrets at Risk

A supply chain attack has compromised nearly all versions of Aqua Security’s Trivy scanner, forcing malicious updates that steal secrets…

Nov 19, 2025