Techly NewsGet the app

Get the latest tech news

AI slop and fake reports are coming for your bug bounty programs


"We're getting a lot of stuff that looks like gold, but it's actually just crap,” said the founder of one security testing firm. AI-generated security vulnerability reports are already having an effect on bug hunting, for better and worse.

And then you end up digging into them, trying to figure out, ‘oh no, where is this vulnerability?’,” Vlad Ionescu, the co-founder and CTO of RunSybil, a startup that develops AI-powered bug hunters, told TechCrunch. Ionescu, who used to work at Meta’s red team tasked with hacking the company from the inside, explained that one of the issues is that LLMs are designed to be helpful and give positive responses. According to HackerOne spokesperson Randy Walker, this new system leveraging “AI security agents to cut through noise, flag duplicates, and prioritize real threats.” Human analysts then step in to validate the bug reports and escalate as needed.

Get the Android app

Or read this on TechCrunch

Read more on:

Photo of AI slop

AI slop

Photo of fake reports

fake reports

Related news:

News photo

Curl creator mulls nixing bug bounty awards to stop AI slop

News photo

YouTube Can't Put Pandora's AI Slop Back in the Box

News photo

After accusations of AI slop, Ark: Aquatica's release date trailer is playing it very safe

« White House unveils sweeping plan to “win” global AI race through deregulation
Samsung backs a video AI startup that can analyze thousands of hours of footage »