ANTHROPIC has launched Project Glasswing, an initiative that uses AI to identify and remediate undiscovered cybersecurity vulnerabilities in critical software, according to Infosecurity Magazine. The project is based on Claude Mythos Preview, a powerful but not publicly available version of Anthropic’s Large Language Model, described by the company as the most capable yet for coding and agentic tasks, able to autonomously find and fix vulnerabilities at scale.
Announced publicly on 7 April, the model has already been tested by launch partners including Amazon Web Services, Apple, Broadcom, Cisco, CrowdStrike, Google, JPMorganChase, the Linux Foundation, Microsoft, NVIDIA and Palo Alto Networks. In testing, the model discovered thousands of zero‑day vulnerabilities, including a 27‑year‑old flaw in OpenBSD and a 16‑year‑old vulnerability in FFmpeg, as well as chained weaknesses in the Linux kernel to escalate access.
As part of Open-Source Security Support, Anthropic has committed up to $100m in usage credits to more than 40 organisations, with a further $4m in donations to open-source security groups, to help scan and secure software infrastructure.