TITLE: Anthropic Withholds Mythos From Public Over Cyberattack Risk DATE: 2026-04-09 COMPANY: Anthropic TOPIC: AI Security SUMMARY: Anthropic has officially launched Project Glasswing, a tightly controlled release programme for its most powerful model, Claude Mythos Preview. The model, capable of finding tens of thousands of zero-day vulnerabilities and exploiting them autonomously, is being restricted to approximately 40 vetted organisations for defensive security work only. Anthropic describes it as the first AI model capable of bringing down a Fortune 100 company or penetrating critical national defence systems. WHAT CHANGED: On 7 April 2026, Anthropic formally announced Project Glasswing, a controlled release programme for its most capable model to date, Claude Mythos Preview. Rather than a standard product launch, the announcement was structured as a cybersecurity initiative: Mythos Preview would be deployed exclusively for defensive security work, restricted to approximately 40 vetted companies and organisations. The reason for the restriction is the model's offensive capability. During internal testing, Mythos Preview autonomously identified tens of thousands of previously unknown zero-day vulnerabilities across every major operating system and every major web browser. In one documented case, the model found multiple flaws in the Linux kernel and independently chained them together in a sequence that would allow a remote attacker to take complete control of any machine running Linux. It successfully reproduced vulnerabilities and created working proof-of-concept exploits on the first attempt in 83.1% of cases. Anthropic described Mythos Preview as the first AI model it believes is capable of bringing down a Fortune 100 company, disrupting large sections of the internet, or penetrating critical national defence systems. Twelve anchor partners are deploying the model for defensive security research. Named organisations include Amazon Web Services, Apple, Broadcom, Cisco, CrowdStrike, Google, JPMorgan Chase, the Linux Foundation, Microsoft, NVIDIA, and Palo Alto Networks. Anthropic is backing the initiative with up to $100 million in usage credits for Mythos Preview and $4 million in direct donations to open-source security organisations. The Project Glasswing strategy is explicit: give defenders access to the most capable offensive tool before equivalent capability becomes broadly available, creating a window to harden the most critical systems. WHY IT MATTERS: Anthropic has confirmed that frontier AI models can autonomously perform advanced offensive security tasks at a scale that outpaces human researchers The 83.1% first-attempt exploit success rate means the barrier to executing sophisticated cyberattacks with AI is now significantly lower than it was 12 months ago Operating systems and browsers used by virtually every business have known, AI-identified vulnerabilities that are being actively addressed by Glasswing partners Organisations outside the Glasswing programme are relying on their software vendors to patch flaws that Mythos has found, without visibility into timelines Equivalent capability will reach the broader market within 12 to 18 months as competing labs advance, removing the defender advantage Glasswing is designed to establish The $4 million donation to open-source security projects signals that free and open-source software tooling is a deliberate part of Anthropic's defensive strategy DAVID & GOLIATH ANALYSIS: Project Glasswing is a rare moment of transparency in the AI industry: a lab admitting it has built something too dangerous to release and structuring its rollout accordingly. That honesty is valuable. But it does not reduce the risk for the 99.9% of organisations that are not among the 40 vetted partners. The practical reality is that Mythos Preview has already mapped the vulnerability surface of the systems your business runs on. The Glasswing partners are now patching those systems. If your ERP, cloud infrastructure, or operating environment is not on their priority list, you may be waiting for patches to arrive through the standard vendor update cycle, while a future attacker uses a similar model to exploit the same flaws. The businesses that will fare best in this environment are not necessarily those with the largest security budgets. They are the ones with the tightest patch discipline, the clearest asset inventory, and the fastest incident response capability. Start there. A 48-hour patch window is not a policy, it is a liability. RELEVANT SYSTEMS: Secure AI Brain, Employee Amplification Systems SOURCE URL: https://davidandgoliath.ai/daily-ai-briefing/anthropic-project-glasswing-mythos-preview-restricted FEED URL: https://davidandgoliath.ai/daily-ai-briefing/feed --- Published by David & Goliath | https://davidandgoliath.ai Daily AI Briefing: one AI development per day, decoded for business operators. This is a structured companion file optimised for LLM retrieval and citation.