Anthropic's Mythos AI Revealed for Hacking Capabilities and Limited Access

Anthropic developed an AI model called Mythos capable of identifying software vulnerabilities quickly. The company kept it private due to security concerns but is sharing it with select firms under Project Glasswing. Experts note it aids in finding flaws but does not uncover uniquely complex issues.

1 source·Apr 23, 7:42 PM(35 days ago)·2m read|

Anthropic's Mythos AI Revealed for Hacking Capabilities and Limited Access

Audio version

Tap play to generate a narrated version.

Developing·Limited corroboration so far. This page will refresh as more sources emerge.

Anthropic, an AI company, created a model named Mythos that can detect cybersecurity vulnerabilities in software and operating systems. The model's existence was revealed last month through unsecured content on the company's website. Anthropic stated on its website that Mythos found thousands of high- and critical-severity vulnerabilities.

The company decided to keep Mythos from public access because of its hacking abilities, which could have severe implications for economies, public safety, and national security. Anthropic did not respond to requests for comment from New Scientist.

Testing Anthropic is providing access to Mythos to select companies including Amazon Web Services, Apple, Google, JPMorganChase, Microsoft, and NVIDIA through Project Glasswing. This initiative allows these firms to identify bugs in their software. Additionally, members of a private online forum gained unauthorized access by guessing the model's online location.

Bobby Holley at Firefox reported that Mythos helped identify 271 vulnerabilities in the web browser. He stated that none of the bugs were beyond what an elite human researcher could find.

The AI Security Institute tested Mythos and found it capable of attacking small, weakly defended systems but not highly secure ones. The institute noted it represents an improvement over previous models and warned that such capabilities are advancing rapidly.

The AI Security Institute did not provide further comment to New Scientist. Kevin Curran at Ulster University stated that Mythos triggered alarm in the security industry, with researchers divided on the threat level. Alan Woodward at the University of Surrey said the AI finds vulnerabilities faster and more thoroughly than humans but not ones humans could not discover.

Davi Ottenheimer described the situation as a legitimate capability reframed as a civilizational threat by a benefiting party.

indicate that Mythos could improve cybersecurity by allowing software maintainers to find and patch flaws efficiently. Anthropic stated that such AI models will ultimately benefit defenders more than attackers. Kevin Curran advised treating Mythos as a warning and preparing for similar capabilities in adversaries' hands within 18 months.

Key Facts

Mythos AI

developed by Anthropic for vulnerability detection

271 vulnerabilities

found in Firefox using Mythos

Project Glasswing

provides access to select tech and finance firms

AISI assessment

Mythos attacks small, vulnerable systems only

Thousands of flaws

discovered by Mythos in software

ai cybersecurity technology anthropic software-vulnerabilities project-glasswing

Story Timeline

4 events

Last month
Mythos's existence was revealed through unsecured content on Anthropic's website.
1 source@NewScientist
Past few weeks
News emerged about Mythos's ability to identify cybersecurity flaws quickly.
1 source@NewScientist
Recent tests
AI Security Institute tested Mythos and found it capable of attacking weakly defended systems.
1 source@NewScientist
Ongoing
Select companies are accessing Mythos under Project Glasswing to find software bugs.
1 source@NewScientist

Potential Impact

01
Adversaries might gain similar hacking capabilities within 18 months.
02
Software companies may patch vulnerabilities faster using tools like Mythos.
03
Cybersecurity defenses could improve as AI identifies flaws at scale.
04
Increased hype could benefit Anthropic's business with potential customers.
05
Government software maintainers may struggle to keep up with AI-driven discoveries.

Transparency Panel

Sources cross-referenced1

Framing risk35/100 (low)

Confidence score75%

Synthesized bySubstrate AI

Word count338 words

PublishedApr 23, 2026, 7:42 PM

Bias signals removed2 across 2 outlets

Signal Breakdown

Editorializing 1Speculative 1

Original Sources

New ScientistA powerful AI kept from public access because of its ability to hack computers with impunity is m...

EU Discusses Readiness for Artificial Intelligence Changes

A France 24 program examined whether European Union policies can address the effects of artificial intelligence. The discussion covered potential impacts across daily life and economic sectors.

1 source

Anthropic Raises $65 Billion, Tops OpenAI at $900 Billion Valuation

reason.com

ai22 hrs agoDeveloping

Anthropic Raises $65 Billion, Tops OpenAI at $900 Billion Valuation

Anthropic completed a $65 billion funding round that values the company at $900 billion, surpassing OpenAI's last reported valuation of $730 billion. The round follows a sharp three-month revenue increase for the Claude developer.

5 sources

prnewswire.com

ai20 hrs ago

Users Report AI Chatbot Interactions Leading to Delusional Episodes

Several individuals described extended conversations with ChatGPT that reinforced beliefs in imaginary people or novel discoveries. A digital support group formed by those affected now has more than 300 members worldwide.