Navigation
Recherche
|
Google calls the AI fuzz to find vulnerabilities
jeudi 21 novembre 2024, 13:04 , par BetaNews
Not familiar with 'fuzzing'? It's a software testing technique that involves feeding invalid, unexpected, or random data into a program to detect coding errors and security vulnerabilities. Back in August 2023, Google introduced AI-Powered Fuzzing, using large language models (LLM) to improve fuzzing coverage to find more vulnerabilities automatically -- before malicious attackers could exploit them. Recently the company's OSS-Fuzz team reported 26 new vulnerabilities to open source project maintainers, including one vulnerability in the critical OpenSSL library (CVE-2024-9143) that underpins much of internet infrastructure. The team used AI-generated and enhanced fuzz targets to detect these vulnerabilities, representing a milestone… [Continue Reading]
https://betanews.com/2024/11/21/google-calls-the-ai-fuzz-to-find-vulnerabilities/
Voir aussi |
56 sources (32 en français)
Date Actuelle
dim. 22 déc. - 15:52 CET
|