this post was submitted on 28 Feb 2026
59 points (96.8% liked)

Technology

82070 readers
5325 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
59
Death by a thousand slops (daniel.haxx.se)
submitted 1 day ago by lemmydividebyzero@reddthat.com to c/technology@lemmy.world
9 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] lemmydividebyzero@reddthat.com 5 points 1 day ago* (last edited 1 day ago) (2 children)

Luckily, the word "Certainly" is a huge hint that it was generated by AI. You know that the reporter of the "issue" copy-pasted the question of the developer right into the LLM and copy-pasted the output right into hackone.

[–] TheBlackLounge@lemmy.zip 1 points 4 hours ago (1 children)

Hindsight bias. This is from 2023. It's obvious now. If it still was this easy to spot they wouldn't have closed the bug bounty program.

[–] T156@lemmy.world 1 points 3 hours ago* (last edited 3 hours ago) (1 children)

It was volume that was more the issue with the bug bounty program.

They were flooded, and recognising it is all well and good, but not if there's no good way to filter it out, not without massive collateral.

[–] TheBlackLounge@lemmy.zip 0 points 3 hours ago (1 children)

I encourage you to read some threads linked at the bottom of the article. The AI spammers have become way less obvious, one even has video. The team still checks every issue.

[–] T156@lemmy.world 1 points 1 hour ago* (last edited 1 hour ago)

Right, but the volume was the issue. The cURL team could only work through and verify them so quickly, so the deluge of bug reports just made it impractical for them to dedicate time to sort through it. The idea in getting rid of the bug bounty being that there would be less of an incentive to generate and write a bogus bug report.

[–] brsrklf@jlai.lu 1 points 4 hours ago* (last edited 4 hours ago)

Well, another big hint is how the thing answered by addressing a username that wasn't part of the exchange, twice. And then messed up the "@" when they pointed that to it.

If it's even manually copy-pasted, the guy doing that didn't allocate a single braincell to what was being discussed.