If you could ask any question to Mozilla concerning last month's The Zero-days are Numbered post, what would it be?

dangoodin@infosec.exchange

The zero-days are numbered | The Mozilla Blog

AI security tools help Firefox uncover and fix hundreds of vulnerabilities, shifting the balance against zero-day exploits.

(blog.mozilla.org)

guillaumerossolini@infosec.exchange

@dangoodin lol?

Do they believe so much in AI now that they’d throw everything at it

What about their own longstanding “IRL: online life is real life” podcast that used to call out AI overreach, dangers and mismanagement

szbalint@mastodon.social

@dangoodin What is the CVSS distribution of the 271 bugs that they’ve found with Mythos help? (Or some cruder severity/exposure metric if they don’t have CVSS)

lmk@infosec.exchange

@dangoodin "Aren't you confusing the number Found by Mythos with the actual number of vulnerabilities (still unfound)?" The title suggests the unknown vulns are out of sight out of mind. We can be nearly certain Mythos didn't find the all and we cannot put an upper bound on the number. Also an important question is "Breakdown the 271 by severity and confirmed exploitable."

CIRCLE WITH A DOT

If you could ask any question to Mozilla concerning last month's The Zero-days are Numbered post, what would it be?

The zero-days are numbered | The Mozilla Blog

The zero-days are numbered | The Mozilla Blog

The zero-days are numbered | The Mozilla Blog

The zero-days are numbered | The Mozilla Blog