By identifying bugs so efficiently, Holley writes that AI tools like Mythos tilt the cybersecurity balance toward defenders, who benefit when vulnerabilities are discovered, becoming cheaper for both parties. Holley writes, “A few months ago computers were completely unable to do this, and now they are excelling at it.” “We have many years of experience dissecting the work of the world’s best security researchers, and Mythos Preview is capable in every way.”
In an interview with Wired, Holley said that, from now on, this kind of AI-assisted vulnerability analysis is something that “every piece of software will have to do”. [engage with]Because there are so many bugs buried beneath the surface of every piece of software that can now be discovered. And while it’s possible that more advanced future models from Mythos may be able to find bugs that the current model doesn’t, Holley said he’s confident that “at least on the Firefox side, after getting a little head start here, we’ve rounded the curve.”
Walking through AI-assisted defenses could be especially important for the open source projects that form the basis of the modern Internet. This is because their public codebases are easy for AI systems to detect vulnerabilities and because many such projects rely on extremely inadequate volunteer maintenance for their security.
In a New York Times essay last week, Mozilla CTO Raffi Krikorian argued that the human difficulty of both finding bugs and writing complex software has created a kind of balance in cyber threat research that Mythos could comprehensively break. “The programmer who gave 20 years of his life to maintain [open source] The code that runs inside products used by billions of people? He doesn’t have access to the Mythos yet. He should do so,” Krikorian wrote.
<a href