ATLAS · LIVE
ATLAS INDEX
Δ 24H
ACTIVE SOURCES20
HOTSPOTS20
TIME18:10:12 UTC
← All briefs
HIGHCyber IntelligenceThursday, July 16, 2026

Security firm automates zero-day discovery using AI code analysis

Intruder's vulnerability vending machine combines code slicing with large language models to find exploitable flaws without human analysts.

Intruder, a cybersecurity company, has developed an automated system that uses artificial intelligence to discover previously unknown software vulnerabilities. The system combines static code analysis techniques with large language models to identify and exploit zero-day flaws at scale.

The company demonstrated the capability by discovering and exploiting an unknown vulnerability in a WordPress plugin. The system operates by breaking code into analyzable segments, feeding them to LLMs trained on vulnerability patterns, and automatically generating proof-of-concept exploits. Intruder reports additional vulnerabilities have been found and are currently under responsible disclosure with affected vendors.

The approach marks a shift from traditional vulnerability research, which relies on human analysts to manually review code and identify flaws. By automating the discovery pipeline, the system can process far larger codebases and identify complex multi-step vulnerabilities that might escape manual review.

The rest of this brief is inside the platform

Continue reading. Free.

A free Atlas account unlocks the full briefing, the co-analyst, daily delivery to your inbox, and a sector-personalised feed.

Full brief
Implications, sources, methodology
Co-Analyst
Ask follow-ups on every brief
Sector feed
Briefs filtered to what matters to you
Implications
  • 01Software vendors face compressed timelines between release and exploit availability.
  • 02Security teams must assume faster weaponization of newly disclosed vulnerabilities.
  • 03Offensive security capabilities become accessible to smaller, less-resourced threat actors.
  • 04Responsible disclosure programs will face higher submission volumes and complexity.
Source
BleepingComputer
https://www.bleepingcomputer.com/news/security/we-built-a-vulnerability-vending-machine-ai-tokens-in-zero-days-out/
Brief is editorial commentary by Atlas Intelligence based on the cited public reporting. Atlas does not reproduce source text. Verify primary source before action.
#artificial intelligence#zero-day#vulnerability research#automation#wordpress#responsible disclosure
Related Briefs