Google said it has found the first known AI-developed zero-day attack. The Python-based exploit could bypass two-factor authentication on a popular web administration tool. Google said the attack likely used an AI model to help discover and weaponise the vulnerability, citing telltale signs such as overly detailed code comments, a hallucinated security score and structured AI-like coding patterns.