Mythos and Cybersecurity

Last week, Anthropic pulled back the curtain on Claude Mythos Preview, an AI model so capable at finding and exploiting software vulnerabilities that the company decided it was too dangerous to release to the public. Instead, access has been restricted to roughly 50 organizations—Microsoft, Apple, Amazon Web Services, CrowdStrike and other vendors of critical infrastructure—under an initiative called Project Glasswing.

The announcement was accompanied by a barrage of hair-raising anecdotes: thousands of vulnerabilities uncovered across every major operating system and browser, including a 27-year-old bug in OpenBSD, a 16-year-old flaw in FFmpeg. Mythos was able to weaponize a set of vulnerabilities it found in the Firefox browser into 181 usable attacks; Anthropic’s previous flagship model could only achieve two.

This is, in many respects, exactly the kind of responsible disclosure that security researchers have long urged. And yet the public has been given remarkably little with which to evaluate Anthropic’s decision. We have been shown a highlight reel of spectacular successes. However, we can’t tell if we have a blockbuster until they let us see the whole movie.

For example, we don’t know how many times Mythos mistakenly flagged code as vulnerable. Anthropic said security contractors agreed with the AI’s severity rating 198 times, with an 89 per cent severity agreement. That’s impressive, but incomplete. Independent researchers examining similar models have found that AI that detects nearly every real bug also hallucinates plausible-sounding vulnerabilities in patched, correct code.

This matters. A model that autonomously finds and exploits hundreds of vulnerabilities with inhuman precision is a game changer, but a model that generates thousands of false alarms and non-working attacks still needs skilled and knowledgeable humans. Without knowing the rate of false alarms in Mythos’s unfiltered output, we cannot tell whether the examples showcased are representative.

There is a second, subtler problem. Large language models, including Mythos, perform best on inputs that resemble what they were trained on: widely used open-source projects, major browsers, the Linux kernel and popular web frameworks. Concentrating early access among the largest vendors of precisely this software is sensible; it lets them patch first, before adversaries catch up.

But the inverse is also true. Software outside the training distribution—industrial control systems, medical device firmware, bespoke financial infrastructure, regional banking software, older embedded systems—is exactly where out-of-the-box Mythos is likely least able to find or exploit bugs.

However, a sufficiently motivated attacker with domain expertise in one of these fields could nevertheless wield Mythos’s advanced reasoning capabilities as a force multiplier, probing systems that Anthropic’s own engineers lack the specialized knowledge to audit. The danger is not that Mythos fails in those domains; it is that Mythos may succeed for whoever brings the expertise.

Broader, structured access for academic researchers and domain specialists—cardiologists’ partners in medical device security, control-systems engineers, researchers in less prominent languages and ecosystems—would meaningfully reduce this asymmetry. Fifty companies, however well chosen, cannot substitute for the distributed expertise of the entire research community.

None of this is an indictment of Anthropic. By all appearances the company is trying to act responsibly, and its decision to hold the model back is evidence of seriousness.

But Anthropic is a private company and, in some ways, still a start-up. Yet it is making unilateral decisions about which pieces of our critical global infrastructure get defended first, and which must wait their turn.

It has finite staff, finite budget and finite expertise. It will miss things, and when the thing missed is in the software running a hospital or a power grid, the cost will be borne by people who never had a say.

The security problem is far greater than one company and one model. There’s no reason to believe that Mythos Preview is unique. (Not to be outdone, OpenAI announced that its new GPT-5.3-Codex is so dangerous that the model also will not be released to the general public.) And it’s unclear how much of an advance these new models represent. The security company Aisle was able to replicate many of Anthropic’s published anecdotes using smaller, cheaper, public AI models.

Any decisions we make about whether and how to release these powerful models are more than one company’s responsibility. Ultimately, this will probably lead to regulation. That will be hard to get right and requires a long process of consultation and feedback.

In the short term, we need something simpler: greater transparency and information sharing with the broader community. This doesn’t necessarily mean making powerful models like Claude Mythos widely available. Rather, it means sharing as much data and information as possible, so that we can collectively make informed decisions.

We need globally co-ordinated frameworks for independent auditing, mandatory disclosure of aggregate performance metrics and funded access for academic and civil-society researchers.

This has implications for national security, personal safety and corporate competitiveness. Any technology that can find thousands of exploitable flaws in the systems we all depend on should not be governed solely by the internal judgment of its creators, however well intentioned.

Until that changes, each Mythos-class release will put the world at the edge of another precipice, without any visibility into whether there is a landing out of view just below, or whether this time the drop will be fatal. That is not a choice a for-profit corporation should be allowed to make in a democratic society. Nor should such a company be able to restrict the ability of society to make choices about its own security.

This essay was written with David Lie, and originally appeared in The Globe and Mail.

VK: Voorpagina

Volkskrant.nl biedt het laatste nieuws, opinie en achtergronden

Kan euthanasie helpen tegen de ravage van pensioenkosten?

The Guardian

Latest news, sport, business, comment, analysis and reviews from the Guardian, the world's leading liberal voice

The best recent crime and thrillers – review roundup

The Keeper by Tana French; The Kindness of Strangers by Emma Garman; Mrs Shim Is a Killer by Kang Jiyoung; A Killer in the Family by Amin Ahmad; The Drowning Place by Sarah Hilary

The Keeper by Tana French (Viking, ÂŁ16.99)
The final book in French’s Cal Hooper trilogy sees the retired Chicago detective drawn into a power struggle for the future of the small Irish town he has made his home. Ardnakelty is a place where everyone is interconnected, with grudges and loyalties lasting for generations, and Hooper, now engaged to local widow Lena and mentor to 16-year-old Trey, is becoming a part of its fabric. When the body of Rachel Holohan, girlfriend of the son of local bigshot Tommy Moynihan, is recovered from the river, the consensus is suicide, but Trey convinces Hooper to investigate. Tommy doesn’t like people interfering in his business, especially when it emerges that Rachel was concerned about his plans for the town. An immersive, slow-burn of a book, as much about the march of time and the inevitably changing nature of Irish rural life as it is about solving a crime, The Keeper is dense, compelling and superbly atmospheric.

The Kindness of Strangers by Emma Garman (Virago, ÂŁ20)
Set in a Chelsea boarding house in 1953, Garman’s debut novel opens with Jimmy Sullivan – who “wore spiv’s shoes and spoke in unmistakable Cockney tones” – bleeding to death under the dispassionate gaze of the landlady and her lodgers. The big Victorian house, presided over by bohemian literary widow Honor Wilson, is home to a debutante fallen on hard times, a wannabe writer, a young cinema usher with social aspirations, and a Jewish poet who managed to escape Hitler but lost his wife and child in the process. All have secrets, but none more than Honor herself, and the arrival of Jimmy, who claims to be the son of an old family retainer, threatens them all. This is not only an excellent mystery, but an evocative portrayal of a group of people displaced socially and geographically by war and its aftermath, with the moral and topographical landscape of 1950s London superbly rendered.

Continue reading...

Slump in voters’ support for Israel shakes US consensus over military aid

Bipartisan backing for special relationship is fraying as Middle East conflicts turn public opinion

Israel’s conflicts in the Middle East have driven a sea change in US public opinion, threatening a bipartisan consensus of support for military aid for Israel that has been the status quo for decades.

In public opinion polling of Americans, among likely candidates for president, and even in pro-Israel lobbying circles, the special relationship enjoyed by Israel with the US is now under fire as human rights concerns from the left and a new “America First” foreign policy groundswell on the right could impact coming elections – including the 2028 presidential elections.

Continue reading...

Add to playlist: the sweaty, unvarnished electropop of Punchbag and the week’s best new tracks

The sibling duo’s follow-up EP spikes their off-kilter pop with new darkness, adding atmospheric balladry to their glorious racket

From South London
Recommended if you like Charli xcx, Confidence Man, Klaxons
Up next UK tour starts 21 April

If this was April 2008, Punchbag, AKA south London siblings Clara and Anders Bach, would be headlining an NME tour alongside Alphabeat and Frankmusik, while the Popjustice forum would have hailed them as the new face of “wonky pop”. The sonic calling cards of that ramshackle iPod-era micro-genre – off-kilter, unvarnished electropop piled high with myriad other genres – were streaked across Punchbag’s debut single Fuck It. A sweaty riot of 90s rave, maximalist bass and Clara’s spit-soaked vocals, it felt tailor-made for soundtracking an awkward snog on Skins. Last May it was joined by three other frantic bangers on the duo’s debut EP, I’m Not Your Punchbag, the highlight of which, You Used to Be So Sexy, sounds like a GarageBand-produced the Veronicas had they grown up in east London as opposed to Brisbane.

Continue reading...

Why Arsenal are still the favourites to win the Premier League

Manchester City gained ground last weekend but the league leaders have plenty of reasons to remain positive

By Opta Analyst

Last weekend was nightmarish for Arsenal. They lost at home to Bournemouth on Saturday with a flat, disjointed performance, and matters deteriorated further the following day when Manchester City beat Chelsea convincingly at Stamford Bridge. Arsenal’s lead at the Premier League summit has narrowed from nine points to six, and City still have a game in hand.

The two sides meet at the Etihad on Sunday for a match that could define the title race. The narrative pretty much writes itself: City win that game, then win their game in hand, and the title is surely theirs given how strong they are at the end of the season. That scenario is being talked about as an inevitability in some quarters, as though Arsenal have already let things slip.

Continue reading...

Richard Desmond loses ÂŁ1.3bn damages battle over national lottery licence

Media tycoon vows to appeal after dismissal of action against Gambling Commission for awarding Allwyn the franchise

The media tycoon Richard Desmond has vowed to appeal after a resounding defeat in his claim for up to ÂŁ1.3bn in damages from the Gambling Commission over its decision not to award him the 10-year licence to run the national lottery.

Mrs Justice Smith dismissed Desmond’s claim on Friday, in a sometimes scathing written high court judgment that reserved particular criticism for “inexcusable” failings on the part of Desmond’s legal team.

Continue reading...

Rijnmond - Nieuws

Het laatste nieuws van vandaag over Rotterdam, Feyenoord, het verkeer en het weer in de regio Rijnmond

Vogelwering bij metro werkt als val: 'Zoals je aan de dode duiven ziet, zijn ze niet met dierenwelzijn bezig'

Ze hangen er om de overlast te beperken, maar bij metrostation Spijkenisse Centrum zijn de duivennetten veranderd in een val. Door gaten in de netten kunnen de vogels wel naar binnen, maar niet meer naar buiten.

Read maakt rentree bij remise in oefenduel van Feyenoord tegen Excelsior

Givairo Read heeft vrijdag zijn rentree gemaakt in het shirt van Feyenoord. De rechtsback deed na een revalidatietraject van enkele maanden mee in een oefenduel op Varkenoord tegen Excelsior.

De Efteling is kennelijk echt alleen voor kinderen

U schreef ons over dementie, bonen en de marathon. En over welke vraag je écht moet stellen aan mantelzorgers.