Mythos Report Released: Billions of Devices Worldwide Exposed, 10,000 Critical Vulnerabilities Uncovered in 30 Days
The first report from Anthropic's "Project Glasswing" reveals staggering results from its secret initiative using the next-generation AI model, Claude Mythos Preview. In just 30 days, collaborating with roughly 50 global tech giants and critical infrastructure developers, Mythos identified over 10,000 high or critical-severity software vulnerabilities. It demonstrated an extremely low false-positive rate, even outperforming human experts, and successfully intercepted a $1.5 million bank fraud in progress. Key findings include uncovering 2,000 bugs in Cloudflare's core systems, fixing 271 critical vulnerabilities in Firefox 150 (ten times more than previous methods), and discovering a 27-year-old hidden bug in OpenBSD's codebase. The AI even autonomously constructed full attack chains for some exploits.
Mythos also scanned over 1,000 essential open-source projects, identifying 23,019 total vulnerabilities, with 6,202 rated high/critical by the AI. Independent verification confirmed a 90.6% true-positive rate, validating 1,094 severe vulnerabilities. A critical case involved wolfSSL, a cryptography library used by billions of devices, where Mythos found a flaw allowing perfect digital certificate forgery.
This unprecedented discovery speed has created a new crisis: human developers are overwhelmed and cannot patch vulnerabilities fast enough. In response, Anthropic is rolling out defensive tools like "Claude Security" to auto-generate patches and releasing frameworks to help security teams automate code review and threat modeling.
Due to its immense power and potential for weaponization if misused, Anthropic is delaying Mythos's public release until robust safety measures are established. The company urges the industry to shorten patch cycles, enforce updates, and strengthen security fundamentals. The project signals a paradigm shift where AI could eventually make critical code vastly more secure, though the transition period poses significant challenges for human defenders.
marsbit9 год тому
