In this issue: Defense in Depth, Medieval Style Human Trust of AI Agents Mythos and Cybersecurity Is "Satoshi Nakamoto" Really Adam Back? Mexican Surveillance Company ICE Uses Graphite Spyware FBI Extracts Deleted Signal Messages from iPhone Notification Database Hiding Bluetooth Trackers in Mail Medieval Encrypted Letter Decoded What Anthropic’s Mythos Means for the Future of Cybersecurity Claude Mythos Has Found 271 Zero-Days in Firefox Fast16 Malware A Ransomware Negotiator Was Working for a Ransomware Gang Hacking Polymarket DarkSword Malware Rowhammer Attack Against NVIDIA Chips Smart Glasses for the Authorities Insider Betting on Polymarket LLMs and Text-in-Text Steganography Copy.Fail Linux Vulnerability OpenAI’s GPT-5.5 is as Good as Mythos at Finding Security Vulnerabilities How Dangerous Is Anthropic’s Mythos AI? Upcoming Speaking Engagements
The Mythos question: Who decides when AI is too dangerous? — Schwartz Reisman Institute
srinstitute.utoronto.caLast week, Anthropic pulled back the curtain on Claude Mythos Preview, an AI model so capable at finding and exploiting software vulnerabilities that the company decided it was too dangerous to release to the public. In a new op-ed, SRI Director David Lie and Visiting Fellow Bruce Schneier discuss t
Two weeks ago, Anthropic announced that its new model, Claude Mythos Preview, can autonomously find and weaponize software vulnerabilities, turning them into working exploits without expert guidance. These were vulnerabilities in key software like operating systems and internet infrastructure that thousands of software developers working on those systems failed to find. This capability will have major security implications, compromising the devices and services we use every day. As a result, Anthropic is not releasing the model to the general public, but instead to a ...
The new reality rewards systems that can be tested and patched continuously