Anthropic's Mythos Found Millions of Security Vulnerabilities - The Last Invention is AI

Podcast Summary: The Last Invention is AI
Episode Title: Anthropic's Mythos Found Millions of Security Vulnerabilities
Host: Jaden Schaefer
Date: April 7, 2026

Episode Overview

In this episode, Jaden Schaefer explores the seismic implications of Anthropic’s latest AI breakthrough, codenamed Project Glasswing. Powered by the unreleased Claude Mythos Preview model, this initiative aims to secure the world's most critical software by rooting out vulnerabilities better than nearly any human expert. The host dives into the details on why Anthropic has chosen to delay a public launch, the industry’s response, and what this could mean for software security and the evolution of powerful general AI models.

Key Discussion Points & Insights

1. Introduction to Project Glasswing and Mythos (00:00–03:30)

Project Glasswing: Anthropic’s urgent new initiative to secure global software, powered by the Claude Mythos Preview model, touted as their “most powerful model yet.”
Mythos can find software vulnerabilities better than almost any skilled human.
Not currently released to the public—distribution is limited to security researchers and major tech partners.

Quote:
"It's powered by our newest frontier model, Claude Mythos Preview, which can find software vulnerabilities better than all but the most skilled humans."
— Jaden Schaefer (00:22)

2. Why Mythos Is a Gamechanger (03:30–06:30)

Mythos has found "thousands of zero day vulnerabilities, many of them critical," including vulnerabilities 10–20 years old.
Anthropic is restricting access until industry partners have time to patch vulnerabilities found by Mythos.
The fear: releasing it publicly could enable mass exploitation before software can be secured.

Quote:
"It's like the model's so powerful, they can't release it till we fix all the software in the world."
— Jaden Schaefer (05:19)

3. How Anthropic Is Rolling Out Mythos (06:30–08:30)

Mythos is being deployed by 40 partner organizations:
- Including Amazon, Apple, Broadcom, Cisco, CrowdStrike, Linux Foundation, Microsoft, Palo Alto Networks.
Purpose: equip these organizations to patch vulnerabilities across both proprietary and open-source code.
Data on what Mythos has been trained on is limited; not officially stated to be trained solely on code or cybersecurity tasks.

4. Anthropic’s New Model Tiering and Naming (08:30–10:00)

Anthropic typically used Opus/Sonnet nomenclature, but “Mythos” signals a new tier for general models.
Leaked documents indicate “Capybara” as the actual successor to Opus—stronger than anything Anthropic has released.

Quote:
“Capybara is the new name for a new frontier of model. It's larger and more intelligent than Opus… I don't know where they get the names for these. It's almost as bad as Bard in my opinion, but whatever.”
— Jaden Schaefer (09:54)

5. Security Concerns, Government Interaction, and Industry Strategy (10:00–13:30)

Government hesitancy and legal wrangling: Pentagon identified Anthropic as a “supply chain risk” after they refused to allow military uses.
Anthropic is in “ongoing discussions with a bunch of federal officials,” but legal issues complicate matters.
Leaks about Mythos began circulating after an unpublished blog and a Fortune-reported data incident.

Quote:
“With bad relationships with the government, they're giving this to the government, they're giving this to every major organization and telling them, look, like, use this and try to fix it before something like this gets out.”
— Jaden Schaefer (12:35)

6. Accidental Internal Leak, Revenue Explosion, and Business Growth (13:30–16:00)

Last month: Anthropic accidentally exposed 2,000 source code files, causing shutdown of 1,000 GitHub repositories during cleanup.
Anthropic’s revenue is skyrocketing:
- End of 2025: $9 billion run rate
- April 2026: $30 billion (more than triple in three months)
- 1,000+ business clients each spend $1M+ annually, up from 500 just two months prior.
Anthropic positions itself for enterprises rather than casual users.

Quote:
“Their growth is absolutely astronomical. And I think where Anthropic really crushed it, OpenAI is kind of targeting the everyday user… Anthropic is targeting business users.”
— Jaden Schaefer (15:39)

7. Industry Impact and Rationales for Controlled Rollout (16:00–18:00)

Anthropic’s rationale: even if they withheld Mythos, other groups (e.g., in China) would eventually develop similar models.
Best strategy: empower defenders to patch global software before inevitable public access.
$100 million in credits/tokens pledged to partners (e.g., Microsoft) to incentivize them to run and fix as many vulnerabilities as possible.

Quote:
“They’re literally paying Microsoft to fix the security vulnerabilities of the world because their model is about to crush it.”
— Jaden Schaefer (17:24)

Notable Quotes & Moments

On existential software risk:
"This is going to be an existential crisis for code because everything can be hacked and there's vulnerabilities everywhere that can be found." (01:05)
On runaway AI capability:
"It's the most sophisticated and high performance model. It can do complex tasks and it can do a lot of agent building and coding." (07:03)
On Anthropic’s new tier naming:
"Capybara is going to be better than Opus. But Mythos is kind of the umbrella of models." (09:54)

Timestamps for Key Segments

00:00 – 03:30: Introduction to Project Glasswing and Mythos
03:30 – 06:30: Why Mythos is different: zero-day discovery at scale
06:30 – 08:30: Distribution plan—major tech partners and rollout
08:30 – 10:00: Model naming, tiers, and “Capybara” leak
10:00 – 13:30: Government friction, leaks, and the security landscape
13:30 – 16:00: Code leak incident, revenue growth, and enterprise strategy
16:00 – 18:00: Controlled rollout rationale and partner incentives

Summary Takeaways

Mythos represents a huge step forward in AI’s capability to autonomously scan and identify software vulnerabilities.
Anthropic is treading cautiously, choosing not to immediately release Mythos to the public to prevent potential exploitation.
A patch-first strategy is underway, with enormous industry and government cooperation urged before the model becomes widely accessible.
Anthropic’s business is booming, propelled by focus on high-value enterprise customers and the demand for advanced AI tools.
The model’s raw power both excites and terrifies: it highlights the promise of AI as a tool for defense, but also as a potential existential risk if misused.

This episode provides a sweeping look at how rapidly advancing AI is both a critical asset and a potential liability, revealing the new realities faced by the software industry, governments, and technology at large.