MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
reports
Search

Curl Battles Wave of AI-Generated False Vulnerability Reports

Wednesday May 7, 2025. 08:10 PM , from Slashdot
Curl Battles Wave of AI-Generated False Vulnerability Reports
The curl open source project is fighting against a flood of AI-generated false security reports. Daniel Stenberg, curl's original author and lead developer, declared on LinkedIn that they are 'effectively being DDoSed' by these submissions.

'We still have not seen a single valid security report done with AI help,' Stenberg wrote. This week alone, four AI-generated vulnerability reports arrived seeking reputation or bounties, ArsTechnica writes. One particularly frustrating May 4 report claiming 'stream dependency cycles in the HTTP/3 protocol stack' pushed Stenberg 'over the limit.' The submission referenced non-existent functions and failed to apply to current versions.

Some AI reports are comically obvious. One accidentally included its prompt instruction: 'and make it sound alarming.' Stenberg has asked HackerOne, which manages vulnerability reporting, for 'more tools to strike down this behavior.' He plans to ban reporters whose submissions are deemed 'AI slop.'

Read more of this story at Slashdot.
Read more at Slashdot
https://it.slashdot.org/story/25/05/07/1750249/curl-battles-wave-of-ai-generated-false-vulnerability...

Related News

reports [$] Reports from OSPM 2025, day one LWN.netMay 19
ai-generated Curl Warns GitHub About 'Malicious Unicode' Security Issue SlashdotMay 17
stenberg Covid-19 Spikes in Hong Kong, Singapore as New Wave Spreads SlashdotMay 16
vulnerability YouTube Crackdowns on AI-Generated Fake Movie Trailers SlashdotMay 16
are Google patches Chrome vulnerability used for account takeover and MFA bypass ComputerWorldMay 15
false Databricks to acquire open-source database startup Neon to build the next wave of AI agents InfoWorldMay 15
curl Judge Slams Lawyers For 'Bogus AI-Generated Research' SlashdotMay 14
one AI-Generated 'Slop' Threatens Internet Ecosystem, Researchers Warn SlashdotMay 9
report From cloud rush to cloud strategy: The next wave of migrations BetaNewsMay 9
security AI-generated Christian persecution movie is exactly as bad as you'd expect BoingBoingMay 7
submissions curl bans “AI” security reports as Zuckerberg claims we’ll all have more “AI” friends than real ones OS NewsMay 7
battles Curl project founder snaps over deluge of time-sucking AI slop bug reports TheRegisterMay 7
wave Signal Clone Used by Mike Waltz Pauses Service After Reports It Got Hacked Wired: Tech.May 5
reports Apple Maps putting Long Island drivers at risk with false red light camera alerts BetaNewsMay 4
ai-generated Conservative activist sues Meta over AI's false claims about him BoingBoingMay 2
stenberg Dozens of YouTube Channels Are Showing AI-Generated Cartoon Gore and Fetish Content Wired: Tech.May 2
vulnerability AI-Generated Code Creates Major Security Risk Through 'Package Hallucinations' SlashdotApr 29
are Sydney Radio Station Secretly Used AI-Generated Host For 6 Months Without Disclosure SlashdotApr 25
false Waymo Reports 250,000 Paid Robotaxi Rides Per Week In US SlashdotApr 25
curl CVE fallout: The splintering of the standard vulnerability tracking system has begun TheRegisterApr 18
News copyright owned by their original publishers | Copyright © 2004 - 2025 Zicos / 440Network
Current Date
May, Sat 31 - 08:58 CEST