Benvenuto nel Poliverso

Lorenzo Franceschi-Bicchierai

3 settimane fa • •

Lorenzo Franceschi-Bicchierai
3 settimane fa • •

NEW: Google announced that its AI-powered bug hunter Big Sleep found its first 20 vulnerabilities, mostly in open source projects.

A company executive called the development "a new frontier in automated vulnerability discovery." But it's important to note that there was still a human involved, as Google told us.

"We have a human expert in the loop before reporting, but each vulnerability was found and reproduced by the AI agent without human intervention,” a spokesperson said.

techcrunch.com/2025/08/04/goog…

Google says its AI-based bug hunter found 20 security vulnerabilities | TechCrunch

The discoveries by an AI-based bug hunter are significant, as it shows these tools are starting to get real results, even if they still need a human.

^{Lorenzo Franceschi-Bicchierai (TechCrunch)}

Questa voce è stata modificata (3 settimane fa)

Cybersecurity & cyberwarfare reshared this.

in reply to Lorenzo Franceschi-Bicchierai

Epic Null

in reply to Lorenzo Franceschi-Bicchierai • 3 settimane fa • •

Given that the vulnerabilities are not fixed yet, we don’t have details of their impact or severity, as Google does not yet want to provide details, which is a standard policy when waiting for bugs to be fixed.

Perhaps we should wait till these bugs are disclosed before building hype. Otherwise it is JUST taking Google's word for it.

in reply to Lorenzo Franceschi-Bicchierai

Giaco

in reply to Lorenzo Franceschi-Bicchierai • 3 settimane fa • •

What about automated fixing of vulns?

in reply to Lorenzo Franceschi-Bicchierai

VessOnSecurity

in reply to Lorenzo Franceschi-Bicchierai • 3 settimane fa • •

How many of them were hallucinated?

⇧