Senior U.S. officials are considering giving the Cybersecurity and Infrastructure Security Agency access to Anthropic’s Mythos model so it can coordinate vulnerability scanning across federal civilian agencies, with a focus on finding public-facing weaknesses and other security flaws on government networks. The discussions come as agencies seek clearer direction on how advanced AI models will be used in cyber defense, following a White House push for stronger network security measures and CISA’s role in developing guidance and an AI vulnerability clearinghouse. CISA officials have stressed that AI could accelerate detection and prioritization, but would not replace remediation work, infrastructure modernization, or the reduction of technical debt.
At the same time, the Trump administration has tightened control over Anthropic’s most advanced systems by placing Mythos 5 and Fable 5 under Commerce Department export restrictions, requiring licenses for export, re-export, or transfer to foreign persons. The move reportedly followed national security concerns after claims that Mythos had been jailbroken, and Anthropic said it suspended customer access to the affected models to comply while disputing the government’s rationale. The parallel actions highlight a split U.S. approach to frontier AI: expanding potential domestic cybersecurity use inside government while restricting broader access to the company’s most powerful models.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
9 events from the most recent confirmed update back to the earliest known activity.
According to two sources cited by Nextgov, CISA received full access to Anthropic's Mythos Preview model about a week before the report. The access marked a shift from earlier discussions about possible access, even as federal officials had not yet finalized guidance for how CISA should use the model.
In response to the export-control action, Anthropic said it had to cut off access to Mythos and Fable for all customers to ensure compliance. The company said it believed the situation was a misunderstanding.
Anthropic's Mythos 5 and Fable 5 models were placed under U.S. Commerce Department export controls, requiring licenses for export, re-export, or domestic transfer to foreign persons. The action was conveyed in a licensing letter from Commerce Secretary Howard Lutnick to CEO Dario Amodei.
Following the jailbreak claims, the administration reportedly tried to persuade Anthropic to delay releasing Mythos 5 and Fable 5 but was unsuccessful. This failed effort preceded formal export-control action.
Another company claimed it had successfully jailbroken Mythos, triggering national security concerns inside the Trump administration. The claim became a catalyst for subsequent government action affecting Anthropic's models.
After the executive order, CISA released the binding operational directive referenced in the order. The agency was also tasked to help create a clearinghouse for AI cybersecurity vulnerabilities.
President Donald Trump's recent AI executive order addressed agency access to advanced frontier models and called for a binding operational directive on securing government networks. The order also set the stage for additional federal AI cybersecurity coordination measures.
In early April 2026, Anthropic launched Project Glasswing to give selected private-sector partners beta access to Mythos in a secure environment. The program was later expanded, reflecting growing cybersecurity planning around the model.
Top federal officials were discussing making CISA the central coordinator for vulnerability scanning across federal agencies using Anthropic's Mythos model. According to the report, CISA did not yet use Mythos, but access was considered imminent.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
17 references tracked. Mallory keeps watching after this page renders.
semafor.com
Open sourcemalware.news
Open sourcenextgov.com
Open sourceitpro.com
Open sourceaxios.com
Open sourcenextgov.com
Open sourcenextgov.com
Open sourcedaniel.haxx.se
Open sourceMap indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.