Unauthorized Users Access Anthropic’s Restricted Claude Mythos Cyber Model
Anthropic said it is investigating reports that unauthorized users accessed its unreleased Claude Mythos Preview model, a cybersecurity-focused system the company had restricted under Project Glasswing because it considered the model too dangerous for public release. Mythos was described as capable of autonomously finding high-severity vulnerabilities, chaining Linux kernel flaws into working exploits, uncovering long-lived bugs such as a 27-year-old OpenBSD issue, and completing complex multi-step attack simulations. Anthropic had provided limited access to selected organizations and pledged safeguards, usage credits, and coordinated defensive support to help security teams use the model for vulnerability discovery and remediation rather than offensive activity.
Reports said the unauthorized access stemmed from a third-party contractor environment and a broader chain of security failures, including alleged clues exposed through the Mercor breach and a LiteLLM-linked supply-chain compromise. Bloomberg and follow-on coverage said a private Discord group may have used contractor access and educated guesses about the model’s location to reach Mythos, while Anthropic said it had no evidence of misuse beyond the third party’s IT environment. Separate unverified claims circulating online alleged that threat actor ShinyHunters was offering Anthropic-related Mythos data and internal documents for sale, adding to concerns over whether frontier AI systems built for defensive cyber research can be adequately secured against leakage and abuse.

Get ahead of threats like this
Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
How this story unfolded
6 events from the most recent confirmed update back to the earliest known activity.
White House reportedly opposes broader Mythos rollout
The Wall Street Journal reported that the White House opposed Anthropic's proposal to expand access to Claude Mythos from a limited Project Glasswing partner group to roughly 120 companies. The reported concerns included cybersecurity risks and whether Anthropic had enough computing capacity to broaden access without affecting government availability.
Unconfirmed ShinyHunters sale claim targets Mythos-related Anthropic data
A Reddit post reported an unverified claim by ShinyHunters that it was selling allegedly stolen Anthropic data related to Claude Mythos, including internal documents and model details. The claim was presented without independent confirmation.
Report says Discord group used unreleased Mythos since early April
Bloomberg reported that an unauthorized private Discord group had been using Anthropic's unreleased Mythos model since Anthropic disclosed it earlier in April. The report said the group may also have had access to other unreleased Anthropic models and linked the exposure chain to contractor access and data from the Mercor/LiteLLM-related breaches.
Anthropic investigates reports of rogue Mythos access
Anthropic said it was investigating claims that unauthorized users had accessed the unreleased Mythos model through a third-party vendor environment. The company stated it had no evidence that any unauthorized access extended beyond that third party's IT environment.
Unauthorized users reportedly gain access to Mythos via third-party environment
A small unauthorized group reportedly obtained access to Claude Mythos the same day Anthropic began limited testing with selected companies. Reports said the access involved a third-party contractor or vendor environment and techniques including guessing the model's location and leveraging exposed information tied to earlier third-party compromises.
Anthropic restricts Claude Mythos Preview to Project Glasswing partners
Anthropic announced that it would not publicly release its Claude Mythos Preview model because of its advanced vulnerability discovery and exploitation capabilities. Instead, it limited access to selected organizations through Project Glasswing and said it would provide safeguards, guidance, and funding to support defensive vulnerability research.
Related entities
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
Sources
17 references tracked. Mallory keeps watching after this page renders.
The Hidden Risks of AI in Healthcare - CyberSRC Blog
cybersrcc.com
Open sourceWhite House against Anthropic expanding Mythos model access: report
yahoo.com
Open sourceLazarus Doesn't Need AGI
recordedfuture.com
Open sourceWhat is Mythos AI and why could it be a threat to global cybersecurity? | AI (artificial intelligence) | The Guardian
theguardian.com
Open sourceAnthropic investigates report of rogue access to hack-enabling Mythos AI | AI (artificial intelligence) | The Guardian
theguardian.com
Open sourceAnthropic Mythos and Project Glasswing
kimballesq.com
Open sourceAnthropic Calls Its New Model Too Dangerous to Release
bankinfosecurity.com
Open sourceMythos AI Cybersecurity Concerns
digitalassetredemption.com
Open sourceSee the full picture, correlated to your attack surface.
Map indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.


