The problem isn’t that AI is maliciously spamming the mailing list, it’s that AI is able to find and report real or potential security vulnerabilities at rates that no human organization can process fast enough. Open source browsers and Linux have been slammed lately with vulnerabilities found by Mythos.
The problem isn’t that AI is maliciously spamming the mailing list, it’s that AI is able to find and report real or potential security vulnerabilities at rates that no human organization can process fast enough. Open source browsers and Linux have been slammed lately with vulnerabilities found by Mythos.
Aah… that is indeed a problem since the threats have to be dealt with fast once they are reported since they are now basically public…
If a public tool can find a CVE in minutes to hours, it doesn’t matter if some of the people using signed an NDA.
All it takes is someone how isn’t going to report it to also find and exploit it
So the exploitation window doesn’t start when it is reported it started at when the tool could have found it
llm sure have made world more shitty place…