Anthropic’s decision to keep its newest artificial intelligence model out of public hands has set off concern well beyond Silicon Valley, drawing some of the country’s top financial officials and bank executives into an unusual conversation about whether a powerful new class of AI systems could reshape cyber risk faster than institutions can defend against it.
The company said this week that its latest model, Claude Mythos Preview, had already identified thousands of previously unknown software vulnerabilities, including flaws affecting widely used infrastructure. Rather than release the system broadly, Anthropic said it would make the model available only to a limited set of security researchers and corporate partners through a gated program it calls Project Glasswing.
The move is notable not only because AI companies typically showcase their newest models as widely as possible, but because Anthropic is effectively arguing that this one is too capable in one domain — cyber offense as well as defense — to be distributed in the usual way.
That claim appears to have been taken seriously in Washington. Reports this week said Treasury Secretary Scott Bessent convened major U.S. bank chiefs in Washington to discuss the cyber implications of Anthropic’s new model, with Jerome Powell, the Federal Reserve chair, also attending. The involvement of the Treasury and the Fed suggested that what might once have been seen as a niche technology release is now being treated as a question of financial stability and critical infrastructure resilience.
A Model Held Back
Anthropic described Mythos as a frontier model whose cybersecurity ability emerged not from narrow exploit-specific training, but from broader advances in coding, reasoning and autonomy. In the company’s account, the model can do more than spot bugs. It can reproduce them, suggest fixes and, in some cases, turn vulnerabilities into working exploits.
In a technical write-up, Anthropic said the model had successfully assembled complex attack chains, including browser exploits involving multiple vulnerabilities, Linux privilege-escalation paths and a remote-code-execution exploit against FreeBSD’s NFS server. The company also said the model had found serious flaws in major operating systems and web browsers.
That level of capability, if borne out independently, would mark a sharp break from the recent past, when many security teams complained that AI-generated bug reports were often noisy, inaccurate and more burdensome than useful. Over the past several weeks, however, prominent open-source maintainers and security researchers have begun describing a striking shift: fewer frivolous reports, more real ones, and a flood of findings substantial enough to consume hours of human review.
Anthropic’s own comparisons underscored the leap. The company said an earlier high-end model in its Claude line had a near-zero success rate on autonomous exploit development in internal tests. Mythos, by contrast, performed dramatically better on at least some benchmarks, including attempts to turn browser-engine vulnerabilities into functioning exploits.
Why Banks Are Paying Attention
For banks, the concern is not abstract. Large financial institutions already contend with relentless probing from criminal groups and nation-state hackers, and they depend on sprawling stacks of software, vendors and legacy systems. A technology that significantly lowers the cost of finding and weaponizing weaknesses could compress the time between discovery and attack — and broaden the pool of actors capable of sophisticated intrusion.
That is why Anthropic’s announcement landed as more than another AI product story. If frontier models can automate parts of vulnerability research and exploit development, they may alter the balance between attackers and defenders in sectors where outages or breaches can have cascading effects. Banks sit near the top of that list, alongside cloud providers, telecom firms, power systems and major software platforms.
Anthropic itself has framed the danger in similar terms, arguing that near-term deployment of highly cyber-capable models could benefit attackers unless access is carefully controlled and defenses are improved first. Project Glasswing is the company’s attempt to buy time: trusted partners get access to identify and patch vulnerabilities in foundational systems before comparable capabilities become widespread.
The company said it would provide $100 million in usage credits to support the effort, alongside partnerships with large technology firms and security organizations. The idea is to direct the model first toward hardening the infrastructure on which much of the digital economy depends.
Evidence of a Broader Shift
Outside experts have treated the restricted rollout as plausible, if not yet fully verified. Some of the examples cited by Anthropic align with real-world patches and disclosures. An OpenBSD fix issued in late March addressed a kernel crash involving malformed TCP SACK packets; Anthropic researcher Nicholas Carlini has publicly described finding a decades-old OpenBSD bug with the help of the model. Other reported findings appear consistent with recent patches in Linux-related code.
Even so, important questions remain unanswered. Anthropic’s central claims — thousands of zero-days, unusually strong autonomous exploit capability, and a risk profile severe enough to justify withholding the model — have not yet been comprehensively validated by independent third parties. Rival AI companies have not publicly disclosed whether they possess systems of comparable cyber ability, though many in the industry assume that if one lab has reached this threshold, others may not be far behind.
That uncertainty is part of what makes the moment so consequential. The issue is not simply whether Mythos is exactly as capable as Anthropic says. It is whether the trajectory is now clear enough that institutions must prepare for a world in which advanced AI systems make bug-finding and exploit development far cheaper, faster and more scalable.
A New Release Pattern?
Anthropic’s approach may also preview a new model for deploying the most sensitive AI systems. In recent years, companies have used staged rollouts mainly to manage reputational risk, misinformation concerns or competitive strategy. Project Glasswing suggests a different logic: that some frontier models may be too operationally dangerous in specific domains to release openly until safeguards, counterpart defenses and monitoring systems catch up.
Anthropic has said it does not plan to make Mythos generally available in its current form. Its longer-term goal, the company says, is to develop safeguards that can detect and block the model’s most dangerous cyber outputs and then apply those protections to future systems.
Whether that becomes an industry norm remains to be seen. Regulators have so far relied more on briefings and warnings than on formal rules. But the fact that top economic officials are already discussing an AI model with bank chiefs suggests the policy conversation is moving quickly. The release of a chatbot once belonged largely to the realm of consumer technology. The release of a model that can help uncover and chain together serious software flaws is now being treated as something closer to a national risk-management problem.
For years, cybersecurity specialists have warned that AI would eventually change the economics of offense and defense. What is new is the sense, now spreading from software maintainers to executive suites and government agencies, that the shift may no longer be theoretical.
Sources
Further reading and reporting used to add context:
- Anthropic withholds Mythos Preview model because its hacking is too powerful
- Project Glasswing \ Anthropic
- US summons bank bosses over cyber risks from Anthropic’s latest AI model | AI (artificial intelligence) | The Guardian
- https://red.anthropic.com/2026/mythos-preview/
- https://www.anthropic.com/webinars/how-outtake-built-autonomous-cyber-defense-on-claude
- https://red.anthropic.com/2026/2025/project-vend/2025/ai-for-cyber-defenders/
- https://red.anthropic.com/2026/critical-infrastructure-defense/
- https://www.anthropic.com/events
- https://red.anthropic.com/2026/zero-days/
- https://www.theguardian.com/technology/2026/jan/27/wake-up-to-the-risks-of-ai-they-are-almost-here-anthropic-boss-warns
- https://www.anthropic.com/claude/opus
- https://www.anthropic.com/claude
- https://www.reddit.com/r/better_claw/comments/1shdipc/anthropics_mythos_model_can_exploit/
- https://www.reddit.com/r/openclaw/comments/1sfapa6/claude_mythos_preview_just_massproduced_zeroday/
- https://www.reddit.com/r/ClaudeAI/comments/1sg0aqp/opus_roasted_anthropic_when_i_asked_about_the/
- https://www.reddit.com/r/cybersecurity/comments/1sfnozz/anthropic_says_mythos_posted_exploits_to_public/
- https://www.reddit.com/r/theprimeagen/comments/1sgt0e7/impact_of_claude_mythos_on_antropics_own_products/
- https://www.reddit.com/r/cybersecurity/comments/1shj2yo/anthropic_model_scare_sparks_urgent_bessent/
- https://www.reddit.com/r/Anthropic/comments/1sgom4u/a_private_company_now_has_powerful_zeroday/
- https://www.reddit.com/r/wallstreetbets/comments/1sh8750/bessent_powell_summon_bank_ceos_to_urgent_meeting/
- https://www.reddit.com/r/Intelligence/comments/1sh684x/anthropic_withholds_mythos_preview_model_citing/
- https://www.reddit.com/r/AIDangers/comments/1sfn86r/anthropic_says_its_most_powerful_ai_cyber_model/
- https://www.reddit.com/r/ClaudeAI/comments/1sf81v6/mythos_can_break_out_of_sandbox_environment_and/
- https://www.axios.com/2026/04/08/mythos-system-card
- https://www.techradar.com/ai-platforms-assistants/anthropic-detects-strategic-manipulation-features-in-claude-mythos-including-exploit-attempts-and-hidden-evaluation-awareness-prompting-concern-over-model-behavior
- https://claudemythosai.io/
- https://gigazine.net/gsc_news/en/20260408-anthropic-claude-mythos-project-glasswing
- https://www.forbes.com/sites/jonmarkman/2026/04/08/what-is-claude-mythos-and-why-anthropic-wont-let-anyone-use-it/
- https://agent-wars.com/news/2026-04-07-system-card-claude-mythos-preview
- https://paweldubiel.com/20260408%E2%81%9D-Mythos-%28Claude%29-Model-Card
- https://www.reddit.com/r/aigossips/comments/1sfjj3y/anthropics_mythos_scores_939_swebench_976_usamo/
- https://laxima.tech/blog/claude-mythos-preview-the-ai-they-decided-not-to-release
- https://aiproductivity.ai/news/anthropic-claude-mythos-preview-system-card/
- https://arxiv.org/abs/2604.04978
- https://www.rdworldonline.com/claude-mythos-leads-17-of-18-benchmarks-anthropic-measured-muse-spark-put-meta-back-in-the-frontier-club-and-openais-spud-model-is-reportedly-near-launch/
- https://tech.yahoo.com/ai/claude/articles/anthropics-mythos-safety-report-shows-193603045.html/
- https://assets.anthropic.com/m/4c024b86c698d3d4/original/Claude-4-1-System-Card.pdf
- https://medium.com/ai-software-engineer/claude-mythos-preview-is-here-i-reviewed-the-system-card-heres-breakdown-351bf4445c9d
- https://www.tomshardware.com/tech-industry/artificial-intelligence/anthropics-latest-ai-model-identifies-thousands-of-zero-day-vulnerabilities-in-every-major-operating-system-and-every-major-web-browser-claude-mythos-preview-sparks-race-to-fix-critical-bugs-some-unpatched-for-decades
- https://www.crowdstrike.com/content/crowdstrike-www/locale-sites/us/en-us/blog/crowdstrike-founding-member-anthropic-mythos-frontier-model-to-secure-ai.html
- https://www.reddit.com/r/ClaudeAI/comments/1sfnh1w/claude_mythos_preview_is_opinionated_and_stands/
- https://chatgptiseatingtheworld.com/wp-content/uploads/2026/03/BMG_Rights_Management_US_LLC_v-Anthropic-Mar-17-2026.pdf
- https://www-cdn.anthropic.com/14e4fb01875d2a69f646fa5e574dea2b1c0ff7b5.pdf
- https://finance.yahoo.com/news/us-treasury-ending-anthropic-products-161238233.html
- https://udn.com/news/story/6813/9433609
- https://www.aa.com.tr/en/americas/us-treasury-chief-fed-chair-warn-banks-over-cyber-risks-tied-to-anthropic-ai-model-report/3900718
- https://www.marketscreener.com/news/anthropic-will-be-out-of-u-s-treasury-s-system-within-days-bessent-says-ce7e5cd3de8ef321
- https://www.lastampa.it/economia/2026/04/10/news/anthropic_rischi_modelli_ai_incontro_bessent_powell_banchieri_wall_street-15579389/
- https://in.investing.com/news/stock-market-news/treasury-secretary-bessent-and-fed-chair-powell-meet-bank-ceos-on-anthropic-ai-risks-93CH-5331621
- https://de.marketscreener.com/boerse-nachrichten/bessent-und-powell-warnen-banken-ceos-vor-risiken-durch-anthropic-modelle-so-bloomberg-news-ce7e50d8dc8afe2c
- https://www.zonebourse.com/actualite-bourse/bessent-et-powell-alertent-les-patrons-de-banques-sur-les-risques-du-modele-d-anthropic-selon-des-s-ce7e50d8dc8cf221
- https://www.zonebourse.com/actualite-bourse/bessent-et-powell-alertent-les-pdg-de-banques-sur-les-risques-du-dernier-modele-d-ia-d-anthropic-se-ce7e50d8dc8df62d
- https://news.bloomberglaw.com/us-law-week/bessent-urgently-summons-bank-ceos-to-discuss-anthropics-new-ai
- https://en.wikipedia.org/wiki/Dario_Amodei
- https://www.econotimes.com/Anthropics-Mythos-AI-Model-Sparks-Emergency-Cybersecurity-Meeting-With-Top-US-Bank-CEOs-1738621
- https://www.reddit.com/r/TheRaceTo10Million/comments/1s7tqqg/the_ceo_of_palo_alto_networks_just_bought_10m_of/
- https://arxiv.org/abs/2602.23679
- https://www.reddit.com/r/singularity/comments/1s57lqa/exclusive_anthropic_left_details_of_an_unreleased/
- https://en.wikipedia.org/wiki/Kevin_Warsh
- https://www.reddit.com/r/ClaudeAI/comments/1sh927m/the_bessentpowell_warning_systemic_risk_or_ai/
- https://www.reddit.com/r/RBRK/comments/1sfvlab/why_anthropics_problem_is_bullish/
- https://www.reddit.com/r/NearTermCollapse/comments/1sh9vbz/bessent_powell_summon_bank_ceos_to_urgent_meeting/
Leave a Reply