So I read this paper over the weekend. Naively, its a resonably interesting piece of research around using a generative AI to use descriptions of CVEs from their responsible disclosures to exploit unpatched systems autonomously. Now read that sentence again — these people prompted Chat GPT4 with CVES which didn’t have fixes yet, and had it hacking unpatched systems with an 85% success rate.
We’re doomed.