Eskenzi PR ad banner Eskenzi PR ad banner
  • About Us
Saturday, 4 July, 2026
IT Security Guru
Eskenzi PR banner
  • Home
  • Features
  • Insight
  • Channel News
  • Events
    • Most Inspiring Women in Cyber 2026
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
  • Home
  • Features
  • Insight
  • Channel News
  • Events
    • Most Inspiring Women in Cyber 2026
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us
No Result
View All Result
IT Security Guru
No Result
View All Result

Anthropic’s Claude Mythos: A New Frontier In AI-Powered Cybersecurity

by David Soffer
May 13, 2026
in AI and Machine Learning
artificial-intelligence
Share on FacebookShare on Twitter

In early April, Anthropic announced the release of Claude Mythos Preview, its most advanced AI model to date.

Though trained as a general-purpose large language model, Mythos quickly distinguished itself through a notable capacity for complex, multi-step cybersecurity work – autonomously parsing massive codebases, detecting critical-severity software defects and identifying vulnerabilities that have eluded human researchers for decades. Anthropic describes its cybersecurity capabilities as “substantially beyond those of any model we have previously trained,” including its prior flagship, Claude Opus.

The numbers back up that claim. When Anthropic ran the model against CyBench, a benchmark measuring autonomous vulnerability discovery and exploitation across sandboxed challenges, Mythos achieved a perfect 100% pass rate, a score Anthropic says no other AI model has achieved. On CyberGym, a separate cybersecurity evaluation site, Mythos scores 83.1% compared to 66.6% for Claude Opus 4.6. Across 17 of 18 total benchmark measures, Mythos led the field.

In practice, the model has already produced results that underscore its potential. During a preview period, Mythos found thousands of major bugs across every major operating system and browser, flaws that even the most skilled researchers had missed for years. Among the most striking findings was a vulnerability in OpenBSD that went undetected for 27 years.

“We are looking at an AI system that does not merely assist human researchers but autonomously outperforms them at scale,” said Elliott Broidy, Chairman and CEO of Broidy Capital Holdings, LLC, a seasoned entrepreneur and investor with extensive experience in national security technology and defense tech. “What Anthropic has built with Mythos is a tool that, in the right hands, could protect millions of people from attacks that would otherwise go undetected for years. The question is now whether our institutions are moving fast enough to deploy it responsibly before our adversaries find a way to use it against us.”

Given both the power and the risks that such a model entails, Anthropic decided to roll it out to a limited group of tech companies rather than the general public through a controlled defense initiative called Project Glasswing. Among the major tech companies forming the coalition are Amazon Web Services, Microsoft, Nvidia and Cisco, along with 40 other organisations that build or maintain critical infrastructure software. To support the effort, Anthropic committed $100 million in usage credits and $4 million in direct donations to open-source security organisations, enabling these partners to use Mythos exclusively for defensive security work, finding and fixing vulnerabilities before adversaries can.

Anthropic was direct about the stakes in its announcement, writing that “no one organisation can solve these cybersecurity problems alone: frontier AI developers, other software companies, security researchers, open-source maintainers, and governments across the world all have essential roles to play.”

However, the model’s very strengths are what make experts uneasy. Cybersecurity professionals have warned that if Mythos can identify and exploit vulnerabilities faster than companies can patch them, the consequences of misuse could be severe. A single AI agent scanning for flaws at this speed and scale, well beyond normal human capacity, represents what many describe as a sea change in the threat landscape.

The model has also become a flashpoint in the relationship between Anthropic and the U.S. government. The Pentagon designated Anthropic a “supply chain risk,” ordering companies working with the military to remove its software from their workflows.

The situation is evolving rapidly. White House Chief of Staff Susie Wiles and Treasury Secretary Scott Bessent met with Anthropic CEO Dario Amodei last month to discuss Mythos and pathways for renewed government collaboration. The White House is now reportedly developing an executive action that would allow federal agencies to work around the supply chain risk designation and onboard Anthropic’s models, including Mythos.

This push and pull reflects a deeper shift, raising broader questions about how emerging technologies are regulated as AI systems like Mythos begin to occupy a space between commercial tools and strategic infrastructure.

“Concerns related to government use of AI technology are reasonable,” said Broidy. “But it’s imperative to consider how technologies that today seem too dangerous or non-feasible may be life-saving tomorrow.”

Broidy added that while the safe deployment of these advanced capabilities must remain a top priority, heavy-handed regulations may prevent important technologies from developing as quickly as they may be needed.

“Solving such complex cybersecurity issues is a joint effort,” said Broidy. “Economic industries, government agencies and technology companies must work together to balance AI innovation and safety.”

ShareTweet
Previous Post

86% of Phishing Attacks are AI Driven, KnowBe4 Research Finds

Next Post

Bridewell Joins Global Incident Response Network FIRST as Full Member

Recent News

pentesting

Pentesting is dead. Long live pentesting.

July 3, 2026
AI Appreciation Day: Celebrating Progress, Embracing Responsibility

The industries being reimagined by AI

July 2, 2026
geopolitical cyber report

Iran-linked MuddyWater espionage campaign targets organisations across four continents

July 1, 2026
Check Point Brings Cloud Firewall to AWS European Sovereign Cloud

Check Point Brings Cloud Firewall to AWS European Sovereign Cloud

July 1, 2026

The IT Security Guru offers a daily news digest of all the best breaking IT security news stories first thing in the morning! Rather than you having to trawl through all the news feeds to find out what’s cooking, you can quickly get everything you need from this site!

Our Address: 10 London Mews, London, W2 1HY

Follow Us

© 2015 - 2024 IT Security Guru - Website Managed by Dessol

  • About Us
Manage Consent
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
  • Manage options
  • Manage services
  • Manage {vendor_count} vendors
  • Read more about these purposes
View preferences
  • {title}
  • {title}
  • {title}
No Result
View All Result
  • Home
  • Features
  • Insight
  • Channel News
  • Events
    • Most Inspiring Women in Cyber 2026
  • Topics
    • Cloud Security
    • Cyber Crime
    • Cyber Warfare
    • Data Protection
    • DDoS
    • Hacking
    • Malware, Phishing and Ransomware
    • Mobile Security
    • Network Security
    • Regulation
    • Skills Gap
    • The Internet of Things
    • Threat Detection
    • AI and Machine Learning
    • Industrial Internet of Things
  • Multimedia
  • Product Reviews
  • About Us

© 2015 - 2024 IT Security Guru - Website Managed by Dessol