{"id":51545,"date":"2026-04-10T15:37:58","date_gmt":"2026-04-10T19:37:58","guid":{"rendered":"https:\/\/mjtsai.com\/blog\/?p=51545"},"modified":"2026-04-10T15:37:58","modified_gmt":"2026-04-10T19:37:58","slug":"mythos-and-glasswing","status":"publish","type":"post","link":"https:\/\/mjtsai.com\/blog\/2026\/04\/10\/mythos-and-glasswing\/","title":{"rendered":"Mythos and Glasswing"},"content":{"rendered":"

Rich Mogull<\/a>:<\/p>\n

\n

Anthropic, the company behind the Claude AI chatbot, made two security announcements that were shocking for many but seen as inevitable by those of us working in AI security. First, it announced Mythos Preview<\/a>, a new, non-public AI model that turns out to be startlingly good at finding security flaws in software. The second was Project Glasswing<\/a>, Anthropic’s program for getting that capability into the hands of the companies best positioned to fix those flaws before anyone else can exploit them. Apple is one of those companies.<\/p>\n

As much as I’d like to downplay the announcements, Mythos and Project Glasswing are very big deals on their own, and harbingers for the future of digital security. Mythos was able to find and exploit new vulnerabilities in every major operating system, including a bug in OpenBSD, an operating system famous for its security, that had been sitting there unnoticed for 27 years.<\/p>\n

[…]<\/p>\n

We are at the start of a period in which finding software flaws that affect everyday users will become dramatically easier for both attackers and defenders. […] However, over the long run, I believe using AI to identify security vulnerabilities favors defenders, because developers can find and fix many more bugs before shipping software to the public.<\/p>\n<\/blockquote>\n\n

Anthropic has a habit of making wild and scary public statements that seem designed to generate headlines and funding but sort of fall apart upon scrutiny. I initially dismissed this as more of the same, but people seem to be taking it seriously<\/a>.<\/p>\n\n

Paul Haddad<\/a>:<\/p>\n

\n

Our model is so good, it’s not safe to release, yet. Has to be one of the greatest AI marketing stunts ever.<\/p>\n<\/blockquote>\n\n

Ben Thompson<\/a>:<\/p>\n

\n

There’s reason for cynicism, given Anthropic’s history, but the part of the “Boy Cries Wolf” myth everyone forgets<\/a> is that the wolf did come in the end.<\/p>\n<\/blockquote>\n\n

Daniel Jalkut<\/a>:<\/p>\n

\n

If Anthropic has really developed an LLM that can suss out security weaknesses better than any other AI, the US government would be foolish to continue shunning them.<\/p>\n<\/blockquote>\n\n

Or, rather, if the government believes the marketing, it may want to take control of the company and its technology, like how it restricted restricted civilian nuclear research.<\/p>\n\n

Ben Thompson<\/a>:<\/p>\n

\n

In fact, Amodei already answered the question: if nuclear weapons were developed by a private company, and that private company sought to dictate terms to the U.S. military, the U.S. would absolutely be incentivized to destroy that company.<\/p>\n<\/blockquote>\n\n

Previously:<\/p>\n