June 7, 2024 at 09:15AM
Mozilla launches new bug bounty program called 0Day Investigative Network (0Din) focusing on large language models and deep learning technologies. The program aims to improve the security of the gen-AI ecosystem by addressing various security issues. Researchers can submit findings to ‘0din at mozilla.com’, allowing them an opportunity for contribution and purchase of findings. No information on potential payouts or targeted products is available. SecurityWeek has reached out for clarifications.
Based on the meeting notes, Mozilla has announced the launch of a new bug bounty program called 0Day Investigative Network (0Din), which focuses on large language models (LLMs) and other deep learning technologies. The program aims to enhance the security of the gen-AI ecosystem by enabling researchers to report security issues such as prompt injection, denial of service, and training data poisoning. Upon submitting findings to ‘0din at mozilla.com’, researchers will receive an offer for their information, subject to validation and confirmation of being within the program’s scope. Additionally, Mozilla expressed the hope that independent researchers will contribute to the development of new security frameworks and best practices tailored for large language models and generative models. However, Mozilla has not disclosed the potential bug bounty payouts or a list of the targeted products. SecurityWeek has reached out to Mozilla for clarifications and will update their article accordingly.