Anthropic’s Claude Mythos Preview Uncovers 10,000+ 0-Days in Project Glasswing
Anthropic’s Claude Mythos Preview Uncovers 10,000+ 0-Days in Project Glasswing
https://cybersecuritynews.com/anthropics-claude-mythos-preview-0-days/
Publish Date: 2026-05-24 04:15:00
Source Domain: cybersecuritynews.com
Anthropic has revealed the staggering initial results of Project Glasswing, a collaborative cybersecurity initiative designed to secure critical infrastructure using advanced AI before malicious actors can exploit it.
In its first month, the project leveraged the unreleased Claude Mythos Preview model to autonomously discover over 10,000 high- and critical-severity zero-day vulnerabilities across the world’s most critical software systems.
Anthropic partnered with over 50 major technology organizations, including Microsoft, Apple, Google, and Cloudflare, to deploy Claude Mythos Preview against highly targeted codebases. The model has demonstrated an unprecedented ability to not only identify flaws but also construct functional exploits autonomously.
Cloudflare reported finding 2,000 bugs, including 400 of high or critical severity, noting that the model’s false-positive rate outperforms human security testers.
Claude Mythos Preview Uncovers 10,000+ 0-Days
Independent evaluations confirm these capabilities across multiple environments. The UK’s AI Security Institute observed that Mythos Preview is the first model to fully solve its multistep cyberattack simulations, while Mozilla utilized the model to uncover and patch 271 vulnerabilities in Firefox 150, yielding ten times more findings than previous testing with Claude Opus 4.6.
Due to the severe dual-use risks associated with these autonomous exploit capabilities, Anthropic has withheld Mythos from public release, restricting its use to defensive consortium members.
Beyond proprietary enterprise systems, Anthropic directed Claude Mythos Preview to scan over 1,000 widely used open-source projects. A notable discovery was CVE-2026-5194, a critical flaw in the wolfSSL cryptography library.
Mythos Preview successfully engineered an exploit for this vulnerability that allowed for the forgery of security certificates, a vector that could enable attackers to spoof banking or email…
