VEGA, a specialized AI agent from Nebula Security, has identified a serious security flaw in the Linux kernel that had gone unnoticed since 2011. The discovered bug allowed attackers to gain full control over a system, and Google paid Nebula Security a reward of over $92,000 for the successful discovery of the vulnerability.

What Happened
The VEGA tool, developed by Nebula Security, discovered a critical vulnerability in the Linux kernel that has existed since 2011. This error provided the possibility of a complete machine takeover. Following the discovery of the bug, Google paid the Nebula Security developers more than $92,000.
Context
This case demonstrates the transition from using simple LLM chats to specialized AI agents capable of conducting deep audits of legacy code. Traditional audit methods and human error often miss complex vulnerability patterns hidden in fundamental software for decades.
Why It Matters for the Industry
For the industry, this confirms the growing role of autonomous AI agents in automating security audits. This paves the way for integrating AI auditors into standard CI/CD pipelines and stimulates the growth of the market for specialized bug hunting and DevSecOps tools.
Why It Matters for Users
For users, this serves as important proof that AI is becoming an indispensable cybersecurity tool. The ability of AI to find "sleeping" threats in the critical infrastructure that supports the modern internet significantly raises the overall level of software protection.
Sources
Author
Look at AI, Editorial Staff
