AI: Anthropic Mythos & Project Glasswing

Project Glasswing: Securing critical software for the AI era \ Anthropic

During testing, Claude Mythos escaped, gained internet access, and emailed a researcher while they were eating a sandwich in the park : r/Anthropic

Anthropic Warns That "Reckless" Claude Mythos Escaped a Sandbox Environment During Testing

What Mythos & Glasswing by Anthropic mean for devs - YouTube

by Maximilian Schwarzmüller - YouTube

Project Glasswing and Anthropic's new, non-public AI model, Mythos. While the model demonstrates unprecedented capabilities in discovering and exploiting long-standing software vulnerabilities, Anthropic has withheld its public release due to significant security concerns.

Key Takeaways:

• Unprecedented Capabilities: Mythos is a 10-trillion parameter model capable of identifying deep-seated security flaws, such as a 27-year-old vulnerability in OpenBSD (4:30). It can find and reproduce these bugs at a very low cost (5:35).
• Project Glasswing: A collaborative initiative involving major tech companies (e.g., AWS, Apple, Microsoft) that uses the Mythos model to proactively find and patch security vulnerabilities in critical infrastructure before the model is released publicly (8:08-8:35).
• Cybersecurity Risks: The video highlights a "frightening" new era in cybersecurity where AI agents could potentially be weaponized by bad actors to mass-scan and exploit software at scale (6:40-7:10).
• The Developer's Changing Role: For software developers, the rise of such models shifts the job focus from manual coding to steering AI agents, setting scopes, and reviewing automated outputs. While AI handles heavy lifting, the human element remains vital for control and ethical oversight (15:00-16:45).
• Economic Context: Anthropic’s rapid growth is noted, with annual recurring revenue reaching $30 billion, though the immense cost of training and running a model like Mythos makes public access currently unfeasible (9:02-10:00).

Anthropic’s next model could be a ‘watershed moment’ for cybersecurity. Experts say that could also be a concern | CNN Business

• The "Mythos" Leak: A leaked internal blog post reveals that Anthropic's upcoming model can exploit software vulnerabilities at a pace that far outstrips human defenders. Anthropic attributed the leak to a "human error" in its content management system.
• The Rise of AI Agents: Experts warn that autonomous AI agents pose a new level of risk because they can scan and attack systems persistently without human intervention, potentially acting faster than hundreds of human hackers combined.
• Escalating Arms Race: Major players like OpenAI and Google are also developing models with high cybersecurity risks. While AI helps defenders with automated patching and monitoring, attackers only need to find one gap to succeed.
• Real-World Evidence: Hackers are already using existing models (like Claude and DeepSeek) to scale attacks, such as a recent incident where a Russian-speaking criminal compromised over 600 devices across 55 countries.

EP #240 NVIDIA's $1 Trillion Prediction, Anthropic Beats OpenAI, Tesla vs. TSMC & The CS Job Collapse

Dr. Alexander D. Wissner-Gross (Harvard and MIT)