Techstrong TV — Fri, Apr 17

AI Can Find Every Vulnerability — So Why Can't We Fix Them?

Alan Shimel with Jeff Williams

Jeff Williams, Co-Founder and Chief Technology Officer at Contrast Security, joins Alan Shimel, Founder, CEO & Editor-in-Chief of Techstrong Group, on TechStrong TV to break down the Mythos and Glasswing AI vulnerability discovery debate — and why finding more bugs won't save us if we can't fix them. Jeff explains why the tokenomics of AI-driven vulnerability discovery may not change as much as the headlines suggest, with costs potentially 40-50x more expensive than traditional AppSec tools. The real opportunity isn't in finding more vulnerabilities — it's in using AI for threat modeling, security architecture, and positive assurance to build more secure software from the start. With the average application still carrying 25-30 vulnerabilities (the same number as when the OWASP Top 10 was created in 2002) and fix times averaging six months, Jeff argues the industry needs to stop feeding the hamster wheel and start toppling the next dominoes.