Anthropic's Mythos surfaces thousands of zero-days as White House blocks expansion

The preview model uncovered previously unknown vulnerabilities across major operating systems and browsers; the Trump administration is opposing Anthropic's plan to widen access from 50 to 120 organizations.

In reporting that ran from April 30 through this weekend, Anthropic disclosed that its Claude Mythos Preview model has surfaced thousands of previously unknown software vulnerabilities — 'zero-days' — across every major operating system and web browser, including a 27-year-old flaw in OpenBSD. Mythos is being tested under an early-access program with about 50 organizations, including Apple, Microsoft, and Nvidia, under a defensive-research umbrella Anthropic calls Glasswing. The Wall Street Journal and Bloomberg then reported that Anthropic's plan to expand access to roughly 120 organizations has been opposed by the White House.

The administration's stated concerns are twofold. First, Mythos's vulnerability-discovery capability could be exploited to attack critical infrastructure — power plants, hospitals, electric grids — if it falls into the wrong hands. Second, US government officials told reporters that wider access could exhaust compute capacity and crowd out federal use. Anthropic disputes the compute claim and has separately said it is investigating a potential unauthorized access incident involving Mythos.

The fight reads as a structural moment, not a one-off dispute. Anthropic is already shut out of the Pentagon's classified-network AI deals announced last week, after refusing the Defense Department's 'all lawful purposes' language. Mythos is the lab's most commercially and politically significant artifact in years — a model that pays for itself by finding bugs faster than humans can patch them, and that the US government would rather not see distributed beyond a tight circle. Whether Anthropic accepts a smaller deployment, escalates legally, or releases a safer derivative model will set the template for how frontier cyber-capable systems are governed.

Takeaway for learners — capability and access are now separate decisions. A model can exist, demonstrably work, and still be held inside a 50-customer fence by a government that doesn't want it widely available. If you're learning AI security, watch what Mythos's defensive use actually produces in patches and CVE filings over the next quarter. That body of evidence — not the politics — is what will determine whether 'release it broadly' becomes the consensus position again.