Mozilla announced on Tuesday that an early version of Anthropic’s Claude Mythos AI model, during internal testing, identified 271 security vulnerabilities in the Firefox browser, and all of them were patched within this week. While Mozilla said it was also surprised by the findings, it noted that the results suggest a fundamental shift may be underway in the cybersecurity landscape, and that defenders may be about to shrink attackers’ advantage—one that they have held for years.
From 22 to 271: Claude Mythos’s security capability leap
Mozilla previously tested another Anthropic model that, in an earlier version of Firefox, identified 22 security-sensitive vulnerabilities. The discovery of 271 vulnerabilities this time represents a major jump in scale.
Mozilla emphasized that all vulnerabilities found by the system could be found even by “top human researchers,” and that AI tools have not yet revealed entirely new categories of vulnerabilities that humans can’t understand. Its core advantage is that it greatly speeds up this process, enabling developers to quickly identify issues before attackers can exploit them.
Claude Mythos was released in March 2026. It is Anthropic’s most advanced model to date, and company internal materials describe it as a new model that goes beyond the earlier Opus series. In pre-release testing, it found thousands of previously unknown vulnerabilities across major operating systems and web browsers.
Project Glasswing: Why access is tightly controlled
Anthropic provides limited access to Claude Mythos through its “Glasswing Program” (Project Glasswing). The organizations currently approved to use it are limited to specific vetted technology companies such as Amazon, Apple, and Microsoft, with use cases restricted to software vulnerability scanning.
The rationale behind this strict control is as follows: testing by a UK AI safety research institute found that Claude Mythos can autonomously carry out complex web operations, including multi-stage enterprise network attack simulations without any human intervention. According to people familiar with the matter, even though the Trump administration had called for a halt to the use of Anthropic’s technology, the U.S. National Security Agency (NSA) has deployed and is running a preview version of Claude Mythos on classified networks.
A double-edged sword: The same capabilities can accelerate cyberattacks
The results Mozilla found have far-reaching implications on both sides. Security researchers warn that AI systems that can analyze code at scale can automatically identify exploitable vulnerabilities in widely used software. If it falls into the hands of bad actors, it will create an unprecedented cybersecurity threat for software companies and users—and may even give rise to a new generation of automated cyberattack forms.
Frequently Asked Questions
What types of issues are the 271 vulnerabilities Claude Mythos found in Firefox?
According to Mozilla, these are real security-sensitive vulnerabilities that “even top human researchers” can find. Mozilla said AI tools have not yet revealed entirely new categories of vulnerabilities that humans can’t understand. However, their advantage lies in how far faster they can conduct large-scale systematic scanning than manual review, and all issues have been fully fixed within this week.
What is the purpose of the Glasswing Program, and which organizations can use Claude Mythos?
The Glasswing Program is Anthropic’s controlled-access program. Currently, only a limited number of vetted technology companies such as Amazon, Apple, and Microsoft are allowed to use Claude Mythos for limited purposes, with use restricted to software security vulnerability scanning. This restriction reflects Anthropic’s high level of caution about the dual-use risks of the model.
What are the broader, far-reaching implications of this discovery for the cybersecurity industry as a whole?
Mozilla said the emergence of AI tools may give defenders, for the first time, an opportunity to shrink attackers’ long-held advantage and achieve “decisive victory.” However, researchers also warn that the same capabilities can be used by attackers as well, accelerating the scale and efficiency of automated cyberattacks. Therefore, controlling access to AI security tools is crucial.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
Google Cloud CEO: Gemini to Power Apple's Personalized Siri Rollout in 2026
Summary: Gemini will power a personalized Apple Siri in 2026, built on Apple's Foundation Models and Gemini collaboration; Apple tests a chat-like Siri in iOS 27/macOS 27, slated for WWDC 2026.
Abstract: Google Cloud's Gemini is set to power a personalized Apple Siri by 2026, blending Gemini with Apple's Foundation Models under a roughly $1 billion collaboration. Apple is testing a redesigned, chat-like Siri in iOS 27/macOS 27, with a Dynamic Island interface and new features, ahead of a WWDC 2026 unveiling on June 8.
GateNews30m ago
SpaceX-Cursor $60B Deal Provides Fresh Evidence for SBF's Pardon Arguments
Abstract
SpaceX announces a $60 billion Cursor partnership with an option to acquire, shaping SBF’s pardon bid as Alameda’s early Cursor stake would be worth about $3 billion today. The piece weighs SBF’s insolvency claims, parental campaigning, creditor objections, and the slim pardon odds.
Summary
SpaceX-Cursor deal fuels SBF pardon bid; Alameda’s $200k stake would be ~ $3B today (15,000x). SBF argues FTX insolvency; markets show low pardon odds; Trump unlikely to pardon.
GateNews38m ago
Chegg Stock Crashes 99% as AI Disrupts Edtech Market
Summary: Chegg soared during online-education demand, then AI tools disrupted its model, triggering massive layoffs and a collapse below $2, with broader AI-driven shifts hitting crypto miners and fintech firms.
Abstract: This article examines Chegg's rise as a pandemic-era edtech darling and its ensuing decline amid the rapid adoption of generative AI, which provides quick answers and undercuts Chegg's value proposition. It documents 2025 layoffs and the stock's plunge toward delisting, and frames Chegg's experience within a broader AI disruption reshaping tech and crypto: Bitcoin miners pivot to AI operations, and AI-native strategies redefine competitiveness in fintech and beyond.
CryptoFrontier48m ago
OpenAI Releases Open-Source Privacy Filter Model for PII Detection and Redaction
Abstract: OpenAI's Privacy Filter is an open-source, locally executable model that detects and redacts PII in text. It supports large contexts, identifies many PII categories, and is intended for privacy-preserving workflows such as data preparation, indexing, logging, and moderation.
OpenAI's Privacy Filter is a locally run, open-source model (128k-token context) that detects and redacts PII in text, covering contact, financial, and credential data for privacy workflows.
GateNews1h ago
OpenAI Plans to Deploy 30GW Computing Power by 2030
OpenAI aims for 30GW of computing by 2030 to meet rising AI demands, with 8GW completed of a 10GW 2025 target. The expansion signals a strategy to scale infrastructure for next-generation AI development and deployment.
OpenAI intends to reach 30GW of computing power by 2030 to accommodate growing AI demands, having already completed 8GW of a 10GW target for 2025. The move reflects a strategic expansion of infrastructure to support next-generation AI development and deployment.
GateNews1h ago
360 AI Vulnerability Discovery Agent Finds Nearly 1,000 Zero-Day Exploits, Competing with Mythos
360 Digital Security's AI-driven agent claims to have found about 1,000 new vulnerabilities, including in Office and OpenClaw; AI now core to discovery and exploit-chain prep, rivaling Mythos.
Abstract: A Bloomberg-cited report notes that 360 Digital Security Group’s AI-driven Vulnerability Discovery Agent identified nearly 1,000 previously unknown vulnerabilities in recent months, including in Microsoft Office and the OpenClaw framework. The firm says AI has become the core engine of vulnerability discovery and has announced an AI tool to accelerate exploit-chain construction. Benincasa characterizes 360 as a competitor to Anthropic’s Mythos, based on Natto Thoughts’ review of the company’s Chinese-language announcements.
GateNews1h ago
