Skip to main content
See every side of every news story
Get Started
SubscribeLogin
Published loading...Updated

Bug bounty businesses bombarded with AI slop

GitHub now requires stronger proof of impact and validation as AI-assisted submissions rise 76% in a year, the company said.

Summary by Ars Technica
Companies that pay hackers to find flaws in their software are being inundated with low-quality reports generated by AI, forcing some to suspend the programs altogether. Businesses that run “bug bounty” schemes have long relied on independent security researchers to spot vulnerabilities. But the rise of AI tools is now overwhelming them with spurious submissions. Bugcrowd, whose customers include OpenAI, T-Mobile, and Motorola, said the number o…

5 Articles

CyberScoopCyberScoop
Center

AI might cut false positives, but it won’t stop the slop

GitHub and industry leaders warn of a massive surge in unvalidated AI vulnerability reporting, forcing bug bounty programs to tighten rules against the noise.

Read Full Article
The New StackThe New Stack
Center

GitHub will start paying some bug bounty hunters in swag instead of cash

Bug bounties have served as one of cybersecurity’s core pressure valves for decades, giving independent researchers a structured way to disclose vulnerabilities before attackers can exploit them. But a deluge of AI-assisted reports is upending parts of that system. GitHub announced last week that it’s tightening standards across its bug bounty program as submission volumes rise sharply alongside the growing use of AI tools in security research. …

Read Full Article
Ars TechnicaArs Technica
Reposted by
cybernoz.comcybernoz.com
Center

Bug bounty businesses bombarded with AI slop

Companies that pay hackers to find flaws in their software are being inundated with low-quality reports generated by AI, forcing some to suspend the programs altogether. Businesses that run “bug bounty” schemes have long relied on independent security researchers to spot vulnerabilities. But the rise of AI tools is now overwhelming them with spurious submissions. Bugcrowd, whose customers include OpenAI, T-Mobile, and Motorola, said the number o…

·United States
Read Full Article
decrypt.codecrypt.co

AI Slop Floods Bug Bounty Programs as Companies Struggle with Fake Reports

Bug bounty platforms and software companies are struggling to handle a surge of low-quality, AI-generated vulnerability reports.

·New York, United States
Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • 100% of the sources are Center
100% Center

Factuality Info Icon

To view factuality data please Upgrade to Premium

Ownership

Info Icon

To view ownership data please Upgrade to Vantage

Ars Technica broke the news in United States on Monday, May 18, 2026.
Too Big Arrow Icon
Sources are mostly out of (0)

Similar News Topics

Software icon

Software

Technology icon

Technology

Artificial Intelligence icon

Artificial Intelligence

Cryptocurrency icon

Cryptocurrency

Big Tech and Platforms icon

Big Tech and Platforms

Business & Markets icon

Business & Markets

News
Feed Dots Icon
For You
Search Icon
SearchBlindspot LogoBlindspotLocal