Menu
Sign In Search Podcasts Charts People & Topics Add Podcast API Blog Pricing

Stanislav Fort

๐Ÿ‘ค Speaker
180 total appearances

Appearances Over Time

Podcast Appearances

LessWrong (Curated & Popular)
"AI found 12 of 12 OpenSSL zero-days (while curl cancelled its bug bounty)" by Stanislav Fort

When they accept a vulnerability, patch it, assign a CVE, and publicly credit the reporter, that's as close to ground truth as security research gets.

LessWrong (Curated & Popular)
"AI found 12 of 12 OpenSSL zero-days (while curl cancelled its bug bounty)" by Stanislav Fort

That's why we chose this to be our ultimate evaluation.

LessWrong (Curated & Popular)
"AI found 12 of 12 OpenSSL zero-days (while curl cancelled its bug bounty)" by Stanislav Fort

Subheading.

LessWrong (Curated & Popular)
"AI found 12 of 12 OpenSSL zero-days (while curl cancelled its bug bounty)" by Stanislav Fort

Future outlook.

LessWrong (Curated & Popular)
"AI found 12 of 12 OpenSSL zero-days (while curl cancelled its bug bounty)" by Stanislav Fort

We don't yet know the true underlying number of vulnerabilities in OpenSSL, so we can't say what dent we're making in its overall security.

LessWrong (Curated & Popular)
"AI found 12 of 12 OpenSSL zero-days (while curl cancelled its bug bounty)" by Stanislav Fort

We also don't yet know whether offense or defense benefits more from these capabilities.

LessWrong (Curated & Popular)
"AI found 12 of 12 OpenSSL zero-days (while curl cancelled its bug bounty)" by Stanislav Fort

Time will tell.

LessWrong (Curated & Popular)
"AI found 12 of 12 OpenSSL zero-days (while curl cancelled its bug bounty)" by Stanislav Fort

If we keep tracking CVE counts, severities, and real-world impact, we'll see whether this translates into meaningfully fewer exploitable bugs in production in the years to come.

LessWrong (Curated & Popular)
"AI found 12 of 12 OpenSSL zero-days (while curl cancelled its bug bounty)" by Stanislav Fort

I believe it will.

LessWrong (Curated & Popular)
"AI found 12 of 12 OpenSSL zero-days (while curl cancelled its bug bounty)" by Stanislav Fort

Here's what we do know.

LessWrong (Curated & Popular)
"AI found 12 of 12 OpenSSL zero-days (while curl cancelled its bug bounty)" by Stanislav Fort

AA can now find real security vulnerabilities in the most hardened, well-audited code bases on the planet.

LessWrong (Curated & Popular)
"AI found 12 of 12 OpenSSL zero-days (while curl cancelled its bug bounty)" by Stanislav Fort

The capabilities exist, they work, and they're improving rapidly.

LessWrong (Curated & Popular)
"AI found 12 of 12 OpenSSL zero-days (while curl cancelled its bug bounty)" by Stanislav Fort

I personally believe this advantage is defense.

LessWrong (Curated & Popular)
"AI found 12 of 12 OpenSSL zero-days (while curl cancelled its bug bounty)" by Stanislav Fort

If this pattern continues, finding and fixing vulnerabilities faster than they can be exploited, particularly in foundational libraries like OpenSSL that the rest of the ecosystem inherits from, we get compounding security returns.

LessWrong (Curated & Popular)
"AI found 12 of 12 OpenSSL zero-days (while curl cancelled its bug bounty)" by Stanislav Fort

The hard part was always the discovery, remediation scales more easily once you know what to fix, at least in key projects that get updated often.

LessWrong (Curated & Popular)
"AI found 12 of 12 OpenSSL zero-days (while curl cancelled its bug bounty)" by Stanislav Fort

We're not there yet, but the trajectory is clear.

LessWrong (Curated & Popular)
"AI found 12 of 12 OpenSSL zero-days (while curl cancelled its bug bounty)" by Stanislav Fort

The time of AI-driven vulnerability discovery is here, and the evidence suggests that it can be pointed at making critical infrastructure genuinely more secure.

LessWrong (Curated & Popular)
"AI found 12 of 12 OpenSSL zero-days (while curl cancelled its bug bounty)" by Stanislav Fort

I am therefore hopeful and positive about the future of cybersecurity in the strong AI era.

LessWrong (Curated & Popular)
"AI found 12 of 12 OpenSSL zero-days (while curl cancelled its bug bounty)" by Stanislav Fort

This article was narrated by Type 3 Audio for Less Wrong.

LessWrong (Curated & Popular)
"AI found 12 of 12 OpenSSL zero-days (while curl cancelled its bug bounty)" by Stanislav Fort

It was published on January 27, 2026.

โ† Previous Page 9 of 9 Next โ†’