Info Gov

AI provider Anthropic has unveiled Claude Mythos Preview, a new artificial intelligence model whose advanced capabilities in software analysis and vulnerability discovery have prompted the company to withhold it from public release, citing concerns over misuse and systemic cyber risk.

Claude Mythos Preview is described by its authors as representing a significant step change over its previous flagship model, Claude Opus 4.6. The company said that internal testing showed the system was able to autonomously identify and exploit previously unknown “zero‑day” vulnerabilities across a wide range of software, including major operating systems and widely used open‑source libraries.

The model successfully uncovered vulnerabilities that had remained undetected for between 16 and 27 years, including flaws in OpenBSD and FFmpeg, software that underpins substantial portions of global digital infrastructure. In some cases, the model generated working exploits end‑to‑end with minimal human prompting, including by engineers without formal cybersecurity training.

Anthropic published a detailed system card outlining the model’s evaluation, risk assessments and reasoning behind the restricted release. The company said that, in its judgement, Claude Mythos Preview exceeds internal thresholds for general release under its Responsible Scaling Policy, particularly in relation to autonomy and cybersecurity risk.

"Over 99% of the vulnerabilities we’ve found have not yet been patched, so it would be irresponsible for us to disclose details about them," the company said in a blog posting. "Once the security landscape has reached a new equilibrium, we believe that powerful language models will benefit defenders more than attackers, increasing the overall security of the software ecosystem. The advantage will belong to the side that can get the most out of these tools. In the short term, this could be attackers, if frontier labs aren’t careful about how they release these models. In the long term, we expect it will be defenders who will more efficiently direct resources and use these models to fix bugs before new code ever ships."

Anthropic has instead chosen to deploy the model through a limited-access cybersecurity initiative known as Project Glasswing. Access is being granted to a controlled group of technology companies and critical infrastructure organisations, including Amazon, Apple, Microsoft, Google, NVIDIA, CrowdStrike, Palo Alto Networks and the Linux Foundation. Anthropic described the purpose of Project Glasswing is to allow trusted partners to use Mythos Preview for defensive security work, including identifying, triaging and patching vulnerabilities in critical and open‑source software before they can be exploited maliciously.

Anthropic has committed up to $100 million in usage credits alongside direct funding for open‑source security efforts as part of the initiative. Anthropic chief executive Dario Amodei said the decision reflects a deliberate trade‑off between capability and risk, noting that “getting this wrong” could materially worsen the global cyber threat environment, while getting it right could substantially strengthen it.

An evaluation by the UK’s AI Safety Institute (AISI), a UK government–backed research and evaluation body responsible for assessing the risks posed by the most advanced artificial intelligence systems, found that the Claude Mythos Preview "represents a significant step change in AI‑enabled cyber capability, particularly in autonomous, multi‑stage attack execution."

It said that, in controlled evaluations, the model achieved a 73% success rate on expert‑level "capture‑the‑flag" challenges and became the first AI system to fully complete a 32‑step simulated corporate network attack, a task that estimated would take skilled human operators around 20 hours. While the testing environment was simplified and did not include active defenders, AISI observed that, when explicitly directed and given network access, Claude Mythos Preview could autonomously discover and exploit vulnerabilities and chain complex attack steps without detailed human guidance. The AISI concluded that the pace of improvement now places AI cyber capabilities close to a threshold of practical significance.

Also in this section

Jul 16, 2026

Scattered Spider pair jailed over TfL hack

Two members of the Scattered Spider hacking collective have each been jailed for five and a half years at Woolwich Crown Court on 16 July over a 2024 cyber attack on Transport for London that compromised the personal data of millions of customers and cost the transport authority £39 million.
Jul 15, 2026

Government introduces mandatory data breach reporting protocol

The Cabinet Office has published a Model Action Plan setting out a single cross-government framework that all departments and arms-length bodies must follow when responding to significant personal data breaches, introducing mandatory central reporting of such incidents for the first time.
Jun 29, 2026

"Five eyes" warn on accelerating cyber security threat from AI

The National Cyber Security has called on organisational leaders to treat cyber resilience as a core business and governance responsibility rather than a technical matter in the light of a report by the Five Eyes intelligence alliance on the "fundamental" impact of AI on the speed and scale of cyber threats.
Jun 15, 2026

Government AI hackathons uncover 407 vulnerabilities across nine departments, including critical remote code execution flaw

A pilot programme using frontier AI models to scan public-sector code repositories has identified 407 security findings across nine government organisations, including a critical vulnerability that could have allowed an external attacker to execute arbitrary code on a key digital service, the Department for Science, Innovation and Technology (DSIT) and the National Cyber Security Centre (NCSC)…

InfoGov Masthead Newsletter 800