A cybersecurity researcher used Claude to uncover a ticketing vulnerability affecting most major U.S. music festivals. The exploit allowed users to issue free tickets by manipulating system requests. This case highlights the dual-use nature of LLMs in security. Practitioners must now weigh the utility of AI-assisted bug hunting against the risk of automated exploit generation.