Hacker News treated this as the kind of privacy bug users fear most: no cookies, no login, just a browser implementation detail that could keep sessions linkable. The post says Mozilla fixed it in Firefox 150 and ESR 140.10.0, but the Tor angle is what drove the discussion.
r/singularity did not stop at the number 271. The thread focused on what it means if large codebases enter an era of near-continuous AI-assisted patching.
Anthropic said Claude Opus 4.6 found 22 Firefox vulnerabilities during a two-week collaboration with Mozilla, including 14 rated high severity. The companies framed the project as an example of AI-assisted security research moving into real product workflows.
Mozilla said on March 6, 2026 that Anthropic’s AI-assisted red team surfaced more than a dozen verifiable Firefox security bugs. Mozilla says engineers validated and fixed most of the issues before Firefox 148 shipped.
Anthropic says Claude Opus 4.6 found 22 Firefox vulnerabilities in a two-week collaboration with Mozilla, including 14 high-severity bugs. The company argues current frontier models are already powerful defensive security researchers and that developers should use the window before offensive capability catches up.
Anthropic said Claude Opus 4.6 found 22 Firefox vulnerabilities during a two-week collaboration with Mozilla. Mozilla classified 14 as high severity and shipped fixes in Firefox 148.0.
Anthropic said on March 6, 2026 that Claude Opus 4.6 uncovered 22 Firefox vulnerabilities in two weeks, including 14 high-severity issues, during a collaboration with Mozilla. The accompanying write-up argues that frontier models are becoming materially useful for real vulnerability discovery, not just benchmark performance.
The Anthropic-Mozilla collaboration that spread on Hacker News disclosed that Claude Opus 4.6 found 22 Firefox vulnerabilities, 14 of them high-severity. The durable lesson is not autonomous magic but faster defender workflows built around validation, triage, and reproducible evidence.
Anthropic published a March 6, 2026 case study showing how Claude Opus 4.6 authored a working test exploit for Firefox vulnerability CVE-2026-2796. The company presents the result as an early warning about advancing model cyber capabilities, not as proof of reliable real-world offensive automation.
Mozilla Firefox 148 debuts an 'AI Kill Switch' that lets users permanently disable all AI features in the browser, with the setting persisting across future updates. The release also includes new web security APIs and accessibility improvements.