Anthropic's Claude Mythos Finds Thousands of Zero-Days Across Every Major OS and Browser

Anthropic has quietly distributed an early version of its most powerful unreleased model, Claude Mythos Preview, to roughly four dozen organizations under a program called **Project Glasswing**. The list includes major tech companies, banks, and government-adjacent research institutions. The model's stated purpose: find and help patch zero-day vulnerabilities before adversaries can exploit them.

The results have been alarming in both directions. Claude Mythos Preview has reportedly identified thousands of previously unknown vulnerabilities across every major operating system—Windows, macOS, Linux—and every major web browser. The Air Street Press State of AI report confirms that frontier models have "crossed into offensive cyber operations," with Mythos clearing a 32-step network penetration simulation in 3 of 10 attempts. OpenAI's GPT-5.5 reportedly replicated comparable results weeks later.

Project Glasswing frames this capability as defensive: share Mythos Preview with trusted organizations, use it to find and patch vulnerabilities before bad actors do. But cybersecurity researchers, including Bruce Schneier, have raised pointed questions about the dual-use nature of the release. A model that can autonomously find and chain zero-days is by definition also a model that can exploit them—and the decision about who gets access is Anthropic's alone, without regulatory oversight.

The UK's AI Security Institute has stated that "frontier cyber-offence capability is doubling every four months." Glasswing is Anthropic's attempt to stay ahead of that curve through coordinated disclosure at scale. Whether it succeeds—and whether the model stays out of adversarial hands—will define a significant chapter in AI governance over the coming year.