{"id":84516,"date":"2026-03-06T02:30:00","date_gmt":"2026-03-06T10:30:00","guid":{"rendered":"https:\/\/blog.mozilla.org\/?p=84516"},"modified":"2026-03-05T19:04:49","modified_gmt":"2026-03-06T03:04:49","slug":"hardening-firefox-anthropic-red-team","status":"publish","type":"post","link":"https:\/\/blog.mozilla.org\/en\/firefox\/hardening-firefox-anthropic-red-team\/","title":{"rendered":"Hardening Firefox with Anthropic\u2019s Red Team\u00a0"},"content":{"rendered":"<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-large is-resized\"><img decoding=\"async\" loading=\"lazy\" width=\"1024\" height=\"1024\" src=\"https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2026\/03\/Mozilla_Illustrations_Pixelgram_Lock_Square_Orange-1024x1024.png\" alt=\"Pixel art lock icon on orange background, representing privacy and security.\" class=\"wp-image-84517\" style=\"width:500px\" srcset=\"https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2026\/03\/Mozilla_Illustrations_Pixelgram_Lock_Square_Orange-1024x1024.png 1024w, https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2026\/03\/Mozilla_Illustrations_Pixelgram_Lock_Square_Orange-300x300.png 300w, https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2026\/03\/Mozilla_Illustrations_Pixelgram_Lock_Square_Orange-150x150.png 150w, https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2026\/03\/Mozilla_Illustrations_Pixelgram_Lock_Square_Orange-768x768.png 768w, https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2026\/03\/Mozilla_Illustrations_Pixelgram_Lock_Square_Orange-1000x1000.png 1000w, https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2026\/03\/Mozilla_Illustrations_Pixelgram_Lock_Square_Orange-800x800.png 800w, https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2026\/03\/Mozilla_Illustrations_Pixelgram_Lock_Square_Orange.png 1080w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/figure><\/div>\n\n\n<p>For more than two decades, Firefox has been one of the most scrutinized and security-hardened codebases on the web. Open source means our code is visible, reviewable, and continuously stress-tested by a global community.&nbsp;<\/p>\n\n\n\n<p>A few weeks ago, Anthropic\u2019s Frontier Red Team approached us with results from a new AI-assisted vulnerability-detection method that surfaced more than a dozen verifiable security bugs, with reproducible tests. Our engineers validated the findings and landed fixes ahead of the recently shipped <a href=\"https:\/\/www.firefox.com\/en-US\/releases\/\">Firefox 148<\/a>.&nbsp;<\/p>\n\n\n\n<p>For users, that means better security and stability in Firefox. Adding new techniques to our security toolkit helps us identify and fix vulnerabilities before they can be exploited in the wild.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">An emerging technique, pressure-tested by Firefox engineers<\/h2>\n\n\n\n<p>AI-assisted bug reports have a mixed track record, and skepticism is earned. Too many submissions have meant false positives and an extra burden for open source projects. What we received from the Frontier Red Team at Anthropic was different.<\/p>\n\n\n\n<p>Anthropic\u2019s team got in touch with Firefox engineers after using Claude to identify security bugs in our JavaScript engine. Critically, their bug reports included minimal test cases that allowed our security team to quickly verify and reproduce each issue.&nbsp;<\/p>\n\n\n\n<p>Within hours, our platform engineers began landing fixes, and we kicked off a tight collaboration with Anthropic to apply the same technique across the rest of the browser codebase. In total, we discovered 14 high-severity bugs and issued 22 CVEs as a result of this work. All of these bugs are now fixed in the latest version of the browser.<\/p>\n\n\n\n<p>In addition to the 22 security-sensitive bugs, Anthropic discovered 90 other bugs, most of which are now fixed. A number of the lower-severity findings were assertion failures, which overlapped with issues traditionally found through fuzzing, an automated testing technique that feeds software huge numbers of unexpected inputs to trigger crashes and bugs. However, the model also identified distinct classes of logic errors that fuzzers had not previously uncovered.&nbsp;<\/p>\n\n\n\n<p>Anthropic has also published a technical write-up of their research process and findings, which we invite you to <a href=\"https:\/\/anthropic.com\/news\/mozilla-firefox-security\" target=\"_blank\" rel=\"noreferrer noopener\">read here<\/a>.\u00a0<\/p>\n\n\n\n<p>The scale of findings reflects the power of combining rigorous engineering with new analysis tools for continuous improvement. We view this as clear evidence that large-scale, AI-assisted analysis is a powerful new addition in security engineers\u2019 toolbox. Firefox has undergone some of the most extensive fuzzing, static analysis, and regular security review over decades. Despite this, the model was able to reveal many previously unknown bugs. This is analogous to the early days of fuzzing; there is likely a substantial backlog of now-discoverable bugs across widely deployed software.<\/p>\n\n\n\n<p>Firefox was not selected at random. It was chosen because it is a widely deployed and deeply scrutinized open source project \u2014 an ideal proving ground for a new class of defensive tools. Mozilla has historically led in deploying advanced security techniques to protect Firefox users. In that same spirit, our team has already started integrating AI-assisted analysis into our internal security workflows to find and fix vulnerabilities before attackers do.&nbsp;<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Building in the open for users<\/h2>\n\n\n\n<p>Firefox has always championed building publicly and working with our community to build a browser that puts users first. This work reflects Mozilla\u2019s long-standing commitment to applying emerging technologies thoughtfully and in service of user security.<\/p>\n\n\n\n<p>The Frontier Red Team at Anthropic showed what collaboration in this space looks like in practice: responsibly disclosing bugs to maintainers, and working together to make them as actionable as possible. As AI accelerates both attacks and defenses, Mozilla will continue investing in the tools, processes, and collaborations that ensure Firefox keeps getting stronger and that users stay protected.&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>For more than two decades, Firefox has been one of the most scrutinized and security-hardened codebases on the web. Open source means our code is visible, reviewable, and continuously stress-tested by a global community.&nbsp; A few weeks ago, Anthropic\u2019s Frontier Red Team approached us with results from a new AI-assisted vulnerability-detection method that surfaced more [&hellip;]<\/p>\n","protected":false},"author":144,"featured_media":84517,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[30],"tags":[4708],"coauthors":[464214,464400],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v22.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Hardening Firefox with Anthropic\u2019s Red Team\u00a0<\/title>\n<meta name=\"description\" content=\"As AI accelerates both attacks and defenses, Mozilla will continue investing in the tools, processes, and partnerships that ensure Firefox keeps getting stronger.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/blog.mozilla.org\/en\/firefox\/hardening-firefox-anthropic-red-team\/\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/blog.mozilla.org\/en\/firefox\/hardening-firefox-anthropic-red-team\/\",\"url\":\"https:\/\/blog.mozilla.org\/en\/firefox\/hardening-firefox-anthropic-red-team\/\",\"name\":\"Hardening Firefox with Anthropic\u2019s Red Team\u00a0\",\"isPartOf\":{\"@id\":\"https:\/\/blog.mozilla.org\/en\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/blog.mozilla.org\/en\/firefox\/hardening-firefox-anthropic-red-team\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/blog.mozilla.org\/en\/firefox\/hardening-firefox-anthropic-red-team\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2026\/03\/Mozilla_Illustrations_Pixelgram_Lock_Square_Orange.png\",\"datePublished\":\"2026-03-06T10:30:00+00:00\",\"dateModified\":\"2026-03-06T03:04:49+00:00\",\"author\":{\"@id\":\"https:\/\/blog.mozilla.org\/en\/#\/schema\/person\/33edd7d4d73723140487082573041c83\"},\"description\":\"As AI accelerates both attacks and defenses, Mozilla will continue investing in the tools, processes, and partnerships that ensure Firefox keeps getting stronger.\",\"breadcrumb\":{\"@id\":\"https:\/\/blog.mozilla.org\/en\/firefox\/hardening-firefox-anthropic-red-team\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/blog.mozilla.org\/en\/firefox\/hardening-firefox-anthropic-red-team\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/blog.mozilla.org\/en\/firefox\/hardening-firefox-anthropic-red-team\/#primaryimage\",\"url\":\"https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2026\/03\/Mozilla_Illustrations_Pixelgram_Lock_Square_Orange.png\",\"contentUrl\":\"https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2026\/03\/Mozilla_Illustrations_Pixelgram_Lock_Square_Orange.png\",\"width\":1080,\"height\":1080,\"caption\":\"Pixel art lock icon on orange background, representing privacy and security.\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/blog.mozilla.org\/en\/firefox\/hardening-firefox-anthropic-red-team\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/blog.mozilla.org\/en\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Hardening Firefox with Anthropic\u2019s Red Team\u00a0\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/blog.mozilla.org\/en\/#website\",\"url\":\"https:\/\/blog.mozilla.org\/en\/\",\"name\":\"The Mozilla Blog\",\"description\":\"News and Updates about Mozilla\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/blog.mozilla.org\/en\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/blog.mozilla.org\/en\/#\/schema\/person\/33edd7d4d73723140487082573041c83\",\"name\":\"Mozilla\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/blog.mozilla.org\/en\/#\/schema\/person\/image\/f32381c01597770b1131dff44b9d6de1\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/f84bd67e8e3ab3bcc9676910aecf5700?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/f84bd67e8e3ab3bcc9676910aecf5700?s=96&d=mm&r=g\",\"caption\":\"Mozilla\"},\"url\":\"https:\/\/blog.mozilla.org\/en\/author\/mozilla\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Hardening Firefox with Anthropic\u2019s Red Team\u00a0","description":"As AI accelerates both attacks and defenses, Mozilla will continue investing in the tools, processes, and partnerships that ensure Firefox keeps getting stronger.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/blog.mozilla.org\/en\/firefox\/hardening-firefox-anthropic-red-team\/","schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/blog.mozilla.org\/en\/firefox\/hardening-firefox-anthropic-red-team\/","url":"https:\/\/blog.mozilla.org\/en\/firefox\/hardening-firefox-anthropic-red-team\/","name":"Hardening Firefox with Anthropic\u2019s Red Team\u00a0","isPartOf":{"@id":"https:\/\/blog.mozilla.org\/en\/#website"},"primaryImageOfPage":{"@id":"https:\/\/blog.mozilla.org\/en\/firefox\/hardening-firefox-anthropic-red-team\/#primaryimage"},"image":{"@id":"https:\/\/blog.mozilla.org\/en\/firefox\/hardening-firefox-anthropic-red-team\/#primaryimage"},"thumbnailUrl":"https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2026\/03\/Mozilla_Illustrations_Pixelgram_Lock_Square_Orange.png","datePublished":"2026-03-06T10:30:00+00:00","dateModified":"2026-03-06T03:04:49+00:00","author":{"@id":"https:\/\/blog.mozilla.org\/en\/#\/schema\/person\/33edd7d4d73723140487082573041c83"},"description":"As AI accelerates both attacks and defenses, Mozilla will continue investing in the tools, processes, and partnerships that ensure Firefox keeps getting stronger.","breadcrumb":{"@id":"https:\/\/blog.mozilla.org\/en\/firefox\/hardening-firefox-anthropic-red-team\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/blog.mozilla.org\/en\/firefox\/hardening-firefox-anthropic-red-team\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/blog.mozilla.org\/en\/firefox\/hardening-firefox-anthropic-red-team\/#primaryimage","url":"https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2026\/03\/Mozilla_Illustrations_Pixelgram_Lock_Square_Orange.png","contentUrl":"https:\/\/blog.mozilla.org\/wp-content\/blogs.dir\/278\/files\/2026\/03\/Mozilla_Illustrations_Pixelgram_Lock_Square_Orange.png","width":1080,"height":1080,"caption":"Pixel art lock icon on orange background, representing privacy and security."},{"@type":"BreadcrumbList","@id":"https:\/\/blog.mozilla.org\/en\/firefox\/hardening-firefox-anthropic-red-team\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/blog.mozilla.org\/en\/"},{"@type":"ListItem","position":2,"name":"Hardening Firefox with Anthropic\u2019s Red Team\u00a0"}]},{"@type":"WebSite","@id":"https:\/\/blog.mozilla.org\/en\/#website","url":"https:\/\/blog.mozilla.org\/en\/","name":"The Mozilla Blog","description":"News and Updates about Mozilla","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/blog.mozilla.org\/en\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/blog.mozilla.org\/en\/#\/schema\/person\/33edd7d4d73723140487082573041c83","name":"Mozilla","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/blog.mozilla.org\/en\/#\/schema\/person\/image\/f32381c01597770b1131dff44b9d6de1","url":"https:\/\/secure.gravatar.com\/avatar\/f84bd67e8e3ab3bcc9676910aecf5700?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/f84bd67e8e3ab3bcc9676910aecf5700?s=96&d=mm&r=g","caption":"Mozilla"},"url":"https:\/\/blog.mozilla.org\/en\/author\/mozilla\/"}]}},"_links":{"self":[{"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/posts\/84516"}],"collection":[{"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/users\/144"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/comments?post=84516"}],"version-history":[{"count":0,"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/posts\/84516\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/media\/84517"}],"wp:attachment":[{"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/media?parent=84516"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/categories?post=84516"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/tags?post=84516"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/blog.mozilla.org\/en\/wp-json\/wp\/v2\/coauthors?post=84516"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}