Banks Panic As Anthropic Mythos Exposes Software Vulnerabilties - Cybersecurity Today

Summary5 min read

Cybersecurity Today
Host: David Shipley
Episode: "Banks Panic As Anthropic Mythos Exposes Software Vulnerabilities"
Date: April 13, 2026

Episode Overview

This week’s episode centers on the widespread alarm triggered by Anthropic’s release of Mythos, a generative AI model capable of finding and chaining together software vulnerabilities. David Shipley explores the ripple effects throughout the global financial sector, the shrinking window for patching vulnerabilities, new phishing tactics targeting C-suites, payroll fraud targeting Canadian employees, and a major law enforcement bust of crypto fraud. The episode captures the heightened urgency and evolving tactics facing cybersecurity teams worldwide.

Key Discussion Points

1. Anthropic Mythos: Global Financial Sector on Alert

[00:19 – 07:00]

Emergency Meetings Across Financial Powerhouses:
- The release of details about Anthropic’s Mythos AI model led to urgent meetings among U.S. regulators, top banking CEOs, and Canadian banking authorities.
- U.S. Treasury Secretary Scott Besant and Fed Chair Jerome Powell convened with CEOs of major banks (Bank of America, Citigroup, Goldman Sachs, Morgan Stanley, Wells Fargo).
- Canadian Financial Sector Resiliency Group and UK financial regulators held similar risk assessment meetings.
- Notable Quote:
  David Shipley [01:53]: “The fact that it was called at all reflects how seriously the financial sector is taking this moment.”
Mythos Capabilities:
- Mythos can identify and chain vulnerabilities on every major operating system and web browser.
- Already uncovered thousands of previously unknown zero-days.
- Access is restricted via "Project Glasswing" to select critical infrastructure organizations and tech giants, not public release.
Wider Implications:
- Governments and banks worry not just about Anthropic, but the possibility of even more advanced, clandestine actors using similar AI.
- Mythos is a wake-up call about decades-long technical debt and insecure code.
- Notable Quote:
  David Shipley [03:16]: “We didn’t get here overnight. This is the bill coming due on technical debt that has accumulated over decades due to a culture of ship it and patch it later or never.”

2. Vulnerability Exploitation Speed Is Accelerating

[07:00 – 10:58]

Case Study: Marimo Notebook Flaw
- Critical authentication bypass in open-source Marimo notebooks patched in version 0.23.0.
- Within 9 hours and 41 minutes of public disclosure, attackers had exploited a monitored honeypot.
- Methodical and targeted exploitation observed.
Shrinking Window for Defense:
- "Zero day clock" site statistics:
  - 2018: Average of 771 days from disclosure to first exploit.
  - 2021: Down to 84 days.
  - 2023: Only 6 days.
  - 2025: Most vulnerabilities exploited before public disclosure.
- AI-generated exploit code is now possible within 10–15 minutes and at low cost ($1 per vuln); 130+ new CVEs are published daily.
- Notable Quote:
  David Shipley [09:50]: “The zero day clock puts the broader problem plainly: Organizations take an average of 20 days to test and deploy a patch. Attackers are now inside the window within hours.”

3. Sophisticated Phishing-as-a-Service: "Venom"

[10:58 – 14:28]

Targeting Executives, Beating MFA:
- “Venom” is a phishing-as-a-service (PhaaS) campaign targeting C-suite execs (CEOs, CFOs, VPs; 60% of targets hold senior titles).
- Attack starts with a precise SharePoint-like email and a QR code designed to be opened on personal devices, bypassing corporate security controls.
Multi-layered Defense Evasion:
- QR code directs targets through anti-researcher checks, spoofing of corporate branding, and MFA interception.
- On successful phish, attacker enrolls a new device on the victim’s account.
- Venom is distributed privately, not sold on public dark web forums.
Vulnerabilities in Executive Behavior:
- Executives are most likely to skip phishing training; attackers design campaigns for this specific weakness.
- Notable Quote:
  David Shipley [13:35]: “Participation in this kind of training and simulations isn’t just good practice for rank and file. It matters for the people attackers are highly motivated to reach.”

4. Payroll Fraud Targeting Canadian Employees

[14:28 – 16:35]

Microsoft Tracks Ongoing Campaign:
- Group “Storm 2755” uses fake Microsoft 365 pages to harvest employee credentials and session cookies.
- After stealing credentials, attackers set up inbox rules to intercept HR emails and change payroll direct deposit info, redirecting paychecks to criminal accounts.
- FBI recorded over 24,000 business email compromise incidents ($3B+ lost in the US last year).
Defense Recommendations:
- Block legacy authentication, enforce phishing-resistant MFA, and require direct employee-verification before changing bank details.
- Notable Quote:
  David Shipley [16:03]: “If your organization can scale this, make sure you pick up the phone and talk to the employee.”

5. Major International Crypto Fraud Bust

[16:35 – 17:47]

Operation Atlantic:
- Joint law enforcement operation across the UK, US, and Canada targeting crypto investment fraud.
- Over 20,000 victims identified; $12M frozen, $45M in stolen assets identified.
- “Approval phishing” scams dupe victims into granting access to their wallets.
- Operation Level Up (FBI) found 8,000 more victims since 2024.
Crypto Fraud is Soaring:
- FBI received over 61,000 crypto fraud complaints in 2025, $7B in losses (25% increase).
- Three quarters of victims were unaware they’d been scammed.
- UK will expand its public-private partnership approach against fraud.
- Notable Quote:
  David Shipley [17:17]: “If someone you’ve never met in person is encouraging you to invest in cryptocurrency through a platform they recommend, that is a serious red flag.”

Notable Quotes and Memorable Moments

[03:16] David Shipley: “This is the bill coming due on technical debt that has accumulated over decades due to a culture of ship it and patch it later or never.”
[09:50] David Shipley: “Organizations take an average of 20 days to test and deploy a patch. Attackers are now inside the window within hours.”
[13:35] David Shipley: “Participation in this kind of training and simulations isn’t just good practice for rank and file. It matters for the people attackers are highly motivated to reach.”
[16:03] David Shipley: “If your organization can scale this, make sure you pick up the phone and talk to the employee.”
[17:17] David Shipley: “If someone you’ve never met in person is encouraging you to invest in cryptocurrency through a platform they recommend, that is a serious red flag.”

Timestamps for Key Segments

Anthropic Mythos and Financial Sector Alarm: 00:19–07:00
Collapse of Patch Window/Marimo Exploit: 07:01–10:58
"Venom" Phishing-as-a-Service: 10:59–14:28
Payroll Fraud in Canada: 14:29–16:35
International Crypto Fraud Bust: 16:36–17:47

Tone & Closing Thoughts

Host David Shipley maintains a tone of sober urgency throughout, blending clear technical breakdowns with pragmatic security advice. He closes the episode with a reminder to “stay safe out there, stay patched and pour one out for the OS teams frantically patching” critical systems this week, reflecting both appreciation for defenders and the scale of challenges raised by generative AI like Mythos.

This summary covers the episode’s structure, insights, and essential details—providing value for listeners seeking to understand the rapidly evolving risks in cybersecurity.

Loading summary

Transcript3 lines

[00:00]
A
Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale. You can find them@meter.com CST
[00:19]
B
governments and bankers hold urgent meetings in the wake of Claude Mythos announcement A software flaw exploited in under 10 hours a phishing platform that hunts CEOs and beats multi factor authentication Canadian paychecks being quietly redirected to cybercriminals and police bust Crypto fraud operation with 20,000 victims across three countries this is Cybersecurity Today and I'm your host David Shipley. Let's get started. We've been following the Anthropic Mytho story since it first surfaced when the company accidentally leaked details of its model through an unsecured data store back in late March. Since then, the story has escalated considerably. This week it landed in the offices of central bankers and bank CEOs on both sides of the Atlantic. Reuters is reporting that U.S. treasury Secretary Scott Besant and Federal Reserve Chair Jerome Powell called an urgent meeting this week with the chief executives of America's largest banks, bank of America, Citigroup, Goldman Sachs, Morgan Stanley and Wells Fargo, among them. The agenda was Mythos and the risks it poses to the financial system. White House National Economic Advisor Kevin Hassett confirmed the meeting publicly, saying the administration wanted to ensure bank leaders were aware and actively taking steps to protect their systems. The same conversations happened here in Canada. The Globe and Mail reports that the Canadian Financial Sector Resiliency Group met on Friday to discuss Mytho. Specifically, that group includes the bank of Canada, the Department of Finance, the Office of the Superintendent of Financial Institutions, and executives from Canada's six largest banks, as well as Credit Union Desjardins. The bank of Canada was explicit in that it wasn't an emergency response, it was a situational awareness meeting. But the fact that it was called at all reflects how seriously the financial sector is taking this moment. OSFI confirmed that it is an active conversation with financial institutions about Mythos and its potential impact on the resiliency of the financial system, though it said it has no plans for any short term changes to existing guidelines. To recap where the Mythos model stands, Anthropic describes it as capable of identifying and exploiting vulnerabilities across every major operating system and every major web browser. Not only is it good at finding flaws, it's proven to be good at chaining them together to create workable exploits. Anthropic says Mythos has already found thousands of previously unknown zero day flaws. Rather than release it publicly, Anthropic has made it available in a limited preview through a program it has called Project Glasswing, which is a controlled group of roughly 40 critical infrastructure operators and technology companies including Amazon, Microsoft, Apple, Google, CrowdStrike, and JPMorgan Chase. The United Kingdom is also paying close attention. The Financial Times also reported that British regulators are rushing to assess the risks of Mythos as well, when the announcement of a new AI model like Mythos prompts emergency or urgent situational meetings among the world's most powerful financial regulators. Within days of the announcement, it's clear government leaders and bank executives are increasingly uncomfortable with the rising risk of global insecure code. And they probably should be. We didn't get here overnight. This is the bill coming due on technical debt that has accumulated over decades due to a culture of ship it and patch it later or never. And the odds that Anthropic is uniquely able to use generative AI to find and exploit vulnerabilities at scale are low. It is a sure bet that others may either be at the same place or maybe even ahead of where Mythos is. But they're not trying to maximize shareholder value by playing up the threat through clever pr. Instead, they're likely keeping quiet and hacking on Our next story illustrates just how fast attackers are moving once a vulnerability becomes public. Maramo is an open source Python notebook used for data science and analysis. Last week, maintainers disclosed a critical security flaw, one that allows an attacker to take complete control of an exposed Marimo instance without any credentials whatsoever. The vulnerability exists because one particular endpoint in the software skips authentication entirely, letting anyone who connects to it run commands directly on the underlying system. The flaw carries a CBSS score of 9.3 out of 10. A patch is available in version 0.23.0. Here is the part that should get your attention. Cloud security firm Sysdig was monitoring a honeypot system when the vulnerability was disclosed. Within 9 hours and 41 minutes before any proof of concept exploit code had even been published, an attacker had already found it connected to the vulnerable endpoint and started exploring the system. They went looking for environment files, SSH keys and other sensitive data. They came back an hour later to confirm what they'd found. Sysdig described the activity as consistent with a human operator working through a list of targets. Methodical, patient, but fast. That speed isn't an accident. It reflects a trend that has been building for years and is now accelerating sharply thanks to AI. A website called the zero day clock tracks the collapse of the window between vulnerability disclosure and first observed exploit. In 2018, the website said the median time was about 771 days. By 2021 it had dropped to 84 days. By 2023 it was 6 days. And in 2025, the majority of exploited vulnerabilities were being weaponized before they were even publicly disclosed. Research published last year by security researcher Effie Weiss and Naaman Khayad makes clear why that window is continuing to shrink. They built an AI system that can read a CVE advisory, analyze the underlying code and generate a working exploit, as well as validate that exploit, all in 10 to 15 minutes. At roughly $1 per vulnerability. More than 130 new CDs are published every day. The math on that is not comfortable when we think about how much faster things are going to get. The zero day clock puts the broader problem plainly. Organizations take an average of 20 days to test and deploy a patch. Attackers are now inside the window within hours. If you're running Marimo in any Internet facing environment, update it to 0.2.3.0 now. And more broadly, any application with a critical advisory and a public facing presence is a target, regardless of how niche or obscure it might seem. Now, from the bleeding edge of AI fueled software vulnerability risk, we now turn to continued success by criminals. Using their faithful, reliable and time tested social engineering techniques, researchers have uncovered a phishing operation that is specifically hunting the people at the top of the org chart. And it's good enough to beat multi factor authentication. Cybersecurity firm Abnormal discovered what they're calling Venom, a phishing as a service platform that has been quietly running since at least last November. The targets are not random. 60% of the people in Venom's crosshairs hold C level president or chairman titles. CEOs, CFOs, VPs, the accounts that can authorize wire transfers, access sensitive data and open doors across an entire organization. Here's how the attack works. The victim gets an email that looks exactly like a SharePoint document sharing notification, the kind they might see every day. The sender address is spoofed to look like it's coming from inside the target company. The email even includes a fake internal thread to make the whole thing feel routine. Inside the email is a QR code. Remember, QR codes are in fact quite dangerous. And here's where it gets clever. The QR code pushes the attack off of the managed corporate laptops and ideally onto personal phones, a device many security teams have far less visibility into. When Venom Targets scan the code. They're taken through a sophisticated filtering process that checks whether they are in fact a human or potentially a security researcher or security tool. The attackers are running blockless. Check the IP address and look for automated browser fingerprints. If the target passes all their tasks, they get a fake Microsoft login page, one that has already filled in the email address and may even display the target company's logo. When the executive enters credentials and completes the MFA prompt, Venom intercepts everything in real time and registers a new device on the target's account. The attacker is in. And they stay in. What makes Venom particularly hard to track is that it's not being sold on the dark web forums. No ads, no public listings. It's invitation only. And they've kept themselves out of the radar of threat researchers up until now. A reminder flare. Threat researcher Tammy Harper has tracked over 850 phishing as a service variants so far. And Venom is likely not the only one that's flying under the radar. Think about that. Almost a thousand criminal businesses that make phishing easy for anyone. One more thing worth noting. Security awareness and training as well as phishing simulations consistently show reduced click rates among employees who participate regularly. The research on this is solid. The catch here is that many top level executives are the most likely to skip out on training and phishing. Simulations and campaigns like Venom are built specifically to exploit those same people at the top. Participation in this kind of training and simulations isn't just good practice for rank and file. It matters for the people. Attackers are highly motivated to reach and turning from executives to everyday employees. If you're a Canadian employee who gets paid by direct deposit, the next story is worth your attention. Microsoft has detailed an active campaign by a financially motivated threat group they're tracking as storm 2755. The target isn't company data or its systems. It's the employee's paycheck. Here's how it works. The attackers start by getting victims to hand over their Microsoft 365 credentials through fake sign in pages. Pages that get pushed to the top of search results through malicious ads or search engine manipulation, or through tried and true phishing. Once a victim logs in through one of these pages, the attacker captures their session cookie in real time. That session cookie is the digital token that tells Microsoft you're already authenticated. With that cookie, Storm 2755 can walk straight into a Microsoft 365 account without needing a password or MFA code. Once inside, the attacker sets up inbox rules to silently intercept any emails from HR containing words like direct deposit or bank, their victims never see those emails. Then the attacker either emails HR directly posing as the employee asking about their direct deposit, or logs directly into HR platforms like Workday using the stolen session and changes the banking details themselves. The result is on the next payroll. Your paycheck goes somewhere else entirely. To put this in context, last year the FBI recorded more than 24,000 business email compromise complaints, resulting in losses of more than $3 billion. That's more than three times the global take for ransomware. Payroll fraud is a significant slice of those losses. Microsoft's advice for organizations, block legacy authentication protocols, enforce phishing resistant mfa, and if you detect signs of compromise, revoke affected tokens immediately, remove any suspicious inbox rules, and reset credentials for impacted accounts. HR teams using platforms like Workday should have controls in place that require additional verification before any banking information is changed. I highly recommend if your organization can scale this to make sure you pick up the phone and talk to the employee. Employees and employers in every other country besides Canada should be on the lookout for this cyber scam as well. As it's happened for years, it's become more popular and they will use these tactics around the world. And now a bit of good news. Law enforcement on both sides of the Atlantic and here in Canada have wrapped up a major operation targeting cryptocurrency fraud. And the numbers are striking. Operation Atlantic, led by the United Kingdom's national crime Agency, identified more than 20,000 victims of crypto fraud across Canada and the United Kingdom and the United States. The week long action last month brought together the US Secret Service, the Ontario Provincial Police, the Ontario Security Commission, and several private industry partners. Investigators froze more than $12 million in suspected criminal proceeds and identified an additional $45 million in stolen cryptocurrency tied to fraud schemes worldwide. The fraud at the center of this operation is called approval phishing. It's a technique where scammers, often posing as investment platforms or romantic contacts, trick victims into granting direct access to their cryptocurrency wallets. Once permission is granted, the money can be drained quickly and with little recourse. To put the broader problem in context, the FBI received more than 61,000 complaints of cryptocurrency investment fraud last year, with reported losses of over $7 billion. To put the broader problem in context, the FBI received more than 61,000 complaints of cryptocurrency investment fraud last year, with reported losses of over $7 billion, up 25% from the year before. Since January 2024, a parallel FBI operation called Operation Level up has identified more than 8,000 additional victims, and officials say roughly three quarters of these people had no idea they were being scammed. If someone you've never met in person is encouraging you to invest in cryptocurrency through a platform they recommend, that is a serious red flag. The UK government says the public private partnership model used in Operation Atlantic will be a core part of its national fraud strategy going forward. That's good news. That's Cybersecurity today for Monday, April 13, 2026. We'll all have to wait to see if the chaos potential of AI fueled mass vulnerability exploitation materializes. And if you want a great deep dive interview into this issue, check out Jim's fantastic Saturday interview with Jeff Williams, an OG OAS founder and CTO founder of software vulnerability discovery firm Contrast Security. Thanks for listening. On Sunday we broke into the top 10 tech news podcasts in Poland and Japan, as well as hitting number four in Canada and number nine in the United States. And at the Atlantic Security Conference or altsecon. A special thank you to the many folks who came up to say hi and that they listened to the show. Some even took selfies, which absolutely made my day. And many people came to see my Beauceron Security talk on why smart people click, which was packed. Thank you so much. There were some truly awesome talks at this conference and I'm hoping to bring some of the best of those talks to all of you in interviews over the next few weeks. Stay safe out there, stay patched and pour one out for the OS teams frantically patching Windows, Mac, macOS, iOS, Android and Linux in the wake of Mythos.
[18:14]
A
We'd like to thank Meter for their support in bringing you this podcast. Meter delivers full stack networking infrastructure, wired, wireless and cellular to leading enterprises. Working with their partners, Meter designs, deploys and manages everything required to get performant, reliable and secure connectivity in a space. They design the hardware, the firmware, build the software, manage deployments and run support. It's a single integrated solution that scales from branch offices, warehouses and large campuses to data centers. Book a demo@meter.com CST that's M E T E R.com CST SAM.