How AI hallucinations are making bug hunting harder

Bug bounty programs that pay people for finding bugs are a very useful tool for improving the security of software. But with the availability of artificial intelligence (AI) as seen in the popular large language models (LLMs) like ChatGPT, Bard, and others it looks like there is a new problem on the horizon.

Bounty hunters are using LLMs not only to translate or proofread their reports, but also to find bugs.

Daniel “Haxx” Stenberg of cURL explains in a blogpost …

artificial artificial intelligence availability bard bounty bug bug bounty bug bounty programs bug hunting bugs chatgpt hallucinations hunting intelligence language language models large llms making pay people popular problem security software tool