AI Slop Floods Bug Bounty Programs as Companies Struggle with Fake Reports

Decrypt·

AI Slop Floods Bug Bounty Programs as Companies Struggle with Fake Reports

60-second summary

Bug bounty platforms and software companies are currently overwhelmed by a flood of low-quality, AI-generated vulnerability reports, with some estimates suggesting over 50% of submissions are now fake. This surge in AI-generated reports is causing significant challenges for companies to identify genuine security threats, hindering their ability to prioritize and address actual vulnerabilities effectively.

Bug bounty platforms and software companies are struggling to handle a surge of low-quality, AI-generated vulnerability reports.