Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Artificial Intelligence

Mozilla Launches 0Din Gen-AI Bug Bounty Program

Mozilla has announced a 0Day Investigative Network (0Din) bug bounty program for LLMs and other deep learning tech.

Mozilla has announced the launch of a new bug bounty program focusing on large language models (LLMs) and other deep learning technologies.

Named 0Day Investigative Network (0Din), the new bug bounty project aims to improve the security of the gen-AI ecosystem. 

Researchers can use 0Din to report prompt injection, denial of service, training data poisoning, and other types of security issues, such as the ones described by OWASP in the Top 10 for LLM Applications.

Those interested in participating in the program can submit findings to ‘0din at mozilla.com’. Once the report has been validated and confirmed of being in scope of the program, the reporting researcher will receive an offer for purchasing the information. If the offer is accepted, the impacted vendor is contacted.  

Mozilla has not made any information available on the potential bug bounty payouts or a list of the targeted products. 

SecurityWeek has reached out to Mozilla for clarifications and will update this article if it responds. 

“0Din expands the scope to identify and fix GenAI security by delving beyond the application layer with a focus on emerging classes of vulnerabilities and weaknesses in these new generations of models,” Mozilla said.

“Our hope for this program is to help independent researchers with an opportunity to contribute to the development of new security frameworks and best practices tailored for large language models, attention-based systems and generative models,” it added. “They will play a key role in defining and strengthening AI security standards thus shaping the future of secure GenAI technologies and how we use them in our daily lives.” 

Related: Netflix Paid Out Over $1 Million via Bug Bounty Program

Advertisement. Scroll to continue reading.

Related: Adobe Adds Content Credentials and Firefly to Bug Bounty Program

Related: Zoom Paid Out $10 Million via Bug Bounty Program Since 2019 

Written By

Eduard Kovacs (@EduardKovacs) is a managing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

The AI Risk Summit brings together security and risk management executives, AI researchers, policy makers, software developers and influential business and government stakeholders.

Register

People on the Move

Satellite cybersecurity company SpiderOak has named Kip Gering as its new Chief Revenue Officer.

Merlin Ventures has appointed cybersecurity executive Andrew Smeaton as the firm’s CISO-in-Residence.

Retired U.S. Army General and former NSA Director Paul M. Nakasone has joined the Board of Directors at OpenAI.

More People On The Move

Expert Insights