Anthropic reported that Claude Opus 4.6 identified 22 security vulnerabilities in Mozilla Firefox during a two-week collaboration with Mozilla, with 14 categorized as high severity. The work began in Firefox’s JavaScript engine and expanded across the broader codebase, demonstrating that an AI model can rapidly surface memory-safety and other complex issues in a mature, heavily scrutinized open-source project; one example cited was a use-after-free class bug discovered early in the effort. Mozilla validated the findings and shipped fixes, with most issues addressed in Firefox 148 (and some remediations deferred to a subsequent release, per reporting).
Separate reporting discussed market and product implications of Anthropic’s Claude Code Security feature—an AI-assisted code-scanning capability that suggests patches and is positioned as an alternative to traditional rules-based static analysis—along with investor reactions affecting major security vendors. While related to AI-driven secure development, that coverage does not describe the Firefox vulnerability-discovery engagement itself and is better treated as adjacent industry context rather than part of the same specific event.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
13 events from the most recent confirmed update back to the earliest known activity.
Mozilla reported that it fixed 423 Firefox security bugs during April 2026, far above its prior monthly average, with Claude Mythos Preview credited for identifying 271 of them and other fixes coming from internal research, external reports, other AI models, and fuzzing. Mozilla said its agentic workflow dynamically generates and validates proof-of-concept test cases and that it plans to integrate the pipeline into continuous integration to scan incoming patches automatically.
On or before May 7, 2026, Mozilla disclosed details on 12 Firefox vulnerabilities identified with Anthropic's Mythos AI tooling, including sandbox issues and an HTML parsing flaw that had reportedly remained in the codebase for 15 years. Mozilla said newer AI-assisted, agentic workflows were improving bug discovery and validation, while human engineers still handled production fixes.
Mozilla shipped Firefox 150 fixing 271 security vulnerabilities, with just over 40 serious or critical issues receiving CVE identifiers. Mozilla said Anthropic AI models, including a preliminary Claude Mythos Preview, helped identify the flaws, and specifically attributed CVE-2026-6746, CVE-2026-6757, and CVE-2026-6758 to Claude.
cURL creator Daniel Stenberg said AI-generated vulnerability reports sharply reduced the validity rate of submissions and overloaded the project's seven-person security team. In response, cURL ended its security report bounty program as maintainers grappled with reviewer fatigue and false positives.
Mozilla's public security advisories for Firefox 148 and Firefox 149 credited researchers using Claude from Anthropic on 28 CVEs. The attribution described a researcher-in-the-loop process with human validation and maintainer review rather than fully autonomous discovery by the model.
Alongside the disclosure, Anthropic and Mozilla promoted practices for AI-generated vulnerability reporting, including reproducible test cases, proofs of concept, candidate patches, and task verifiers to reduce false positives. Anthropic also published a coordinated vulnerability disclosure policy with a standard 90-day timeline and exceptions for actively exploited critical flaws.
Mozilla said its internal experimentation with AI-assisted security analysis also found 90 additional Firefox bugs, including logic errors that traditional fuzzing had missed. The statement highlighted Mozilla's growing use of AI in defensive vulnerability research.
On March 6, 2026, Anthropic disclosed that Claude Opus 4.6 had found 22 previously unknown Firefox vulnerabilities over a two-week effort with Mozilla. The company said the results showed AI is currently much stronger at finding bugs than weaponizing them.
Mozilla released Firefox 148 on February 24, 2026, patching most of the 22 distinct vulnerabilities identified by Claude, including 14 rated high severity. A small number of remaining fixes were deferred to a subsequent release.
Anthropic ran several hundred exploit-development attempts against known Firefox bugs, spending about $4,000 in API credits. The model produced only two working exploits, both crude and requiring weakened conditions such as disabled sandbox protections.
Anthropic used Claude to scan nearly 6,000 C++ files and submitted 112 unique Bugzilla reports to Mozilla. The volume of findings led Mozilla to allow bulk submissions even when every crashing test case had not yet been fully validated for security impact.
During the collaboration, Claude identified an initial use-after-free memory corruption flaw in Firefox's JavaScript engine in about 20 minutes. Human researchers validated the issue and a model-suggested patch before reporting it to Mozilla through Bugzilla.
In January 2026, Anthropic partnered with Mozilla to test Claude Opus 4.6 on Firefox, starting with the browser's JavaScript engine before expanding to broader code review. Firefox was selected as a complex, heavily tested open-source target for the experiment.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
22 references tracked. Mallory keeps watching after this page renders.
cybersecuritynews.com
Open sourcearstechnica.com
Open sourcehacks.mozilla.org
Open sourcetechcrunch.com
Open sourcecybersecuritynews.com
Open sourcered.anthropic.com
Open sourcetechcrunch.com
Open sourcelinkedin.com
Open sourceMap indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.