Though the AI tool needs some structure and direction.
For the quickest way to join, simply enter your email below and get access. We will send a confirmation and sign you up to our newsletter to keep you updated on all your gaming news.
Join the club for quick access. Enter your email below and we'll send confirmation, and sign you up to our newsletter. Keep up to date with the most important stories and the best deals, as picked by the PC Gamer team. Contact me with news and offers from other Future brandsSubscribe to our newsletter It's been difficult as a layman in cybersecurity to figure out how seriously we should take all the hype and fear over Anthropic's Claude Mythos AI.
But now I have something a little more concrete to grasp onto, as Cloudflare has been busy The AI model recently swept through the cybersecurity industry and caused a stir by showing the magnitude of AI's potential threat to software security—for instance, finding, I'd not been sure exactly how much stock to put behind the stink the AI model was causing. Checking over Cloudflare's analysis earlier today, however, has given me a little bit of a better idea..
The idea behind this project seems to be to get in ahead of any bad actors in the AI arms race. It essentially has Anthropic as the 'good guy' that gets companies secured against the latest AI threats to cybersecurity, by using AI to identify the same threats a bad actor might.
Anthropic explains:"Claude Mythos Preview is a general-purpose, unreleased frontier model that reveals a stark fact: AI models have reached a level of coding capability where they can surpass all but the most skilled humans at finding and exploiting software vulnerabilities… Project Glasswing is an urgent attempt to put these capabilities to work for defensive purposes.
" Glasswing gives selected important tech companies access to Mythos Preview to"scan and secure both first-party and open-source systems", with Anthropic giving up to $100 million of credits for them to use. The companies include Amazon Web Services, Apple, Google, Microsoft, It might seem strange to have your cybersecurity strategy raise vulnerabilities to light that bad actors could, in theory, exploit, but that's nothing new: companies often hire '' to do such things so they can patch them.
This is essentially the same idea, but on a whole new scale, given the use of AI. Overall, Cloudflare is impressed with Mythos, saying it's a"real step forward... not just a refinement of what came before... what changed with Mythos Preview is that a model can now take those low-severity bugs and chain them into a single, more severe exploit.
"Keep up to date with the most important stories and the best deals, as picked by the PC Gamer team. Two features that Cloudflare says stood out about Mythos during the company's testing were its"exploit chain construction" and"proof generation" . The model isn't perfect, however—would one expect a"preview" to be so?
Cloudflare, for instance, found it would sometimes pop up guardrails that didn't make sense, preventing legitimate security research. The company also seems to suggest that a lot of people have been thinking about Mythos somewhat incorrectly, focusing on how quickly it can find vulnerabilities for quick patching.
And it discovered that it's better to use the AI model in a more directed and split-up way rather than just setting one Mythos agent to a big review with hands off. If you just set it to check out a giant codebase, it might struggle to maintain relevant context throughout the entire process in a way that a human researcher wouldn't.
"Using the model directly in a coding agent turns out to be fine for manual investigation when a researcher already has a lead and wants a second pair of eyes. However, it's the wrong tool for achieving high coverage.
"The company ultimately found that using Mythos effectively means using a 'harness' that narrows its scope, relying on a second agent to clear signal from noise, and using multiple agents along the chain as well as in parallel. In other words, it seems like having lots of Mythos 'worker' with specific tasks works better than trying to have one super-worker Mythos taking on the entire codebase.
Moving forward, rather than using Mythos solely with a focus on patching faster, Cloudflare thinks people's focus should be on architecture: "The harder question is what the architecture around the vulnerability should look like. The principle is to make exploitation harder for an attacker even when a bug exists, so that the gap between when a vulnerability is disclosed and when it is patched matters less.
That means defenses that sit in front of the application and block the bug from being reached. It means designing the application so that a flaw in one part of the code cannot give an attacker access to other parts. It means being able to roll out a fix to every place the code is running at the same moment, rather than waiting on individual teams to deploy it.
" Exactly how Cloudflare plans to use Mythos in this way is something the company is still keeping close to its chest, but it says it will"share more on what that means for customers in the weeks ahead. "that"increasingly the distinction between bots and humans is moot", at least when it comes to how websites treat users. So I suppose it's no surprise the company is diving into a heavily agentic approach to cybersecurity.
Though if Mythos really is as much of a leap ahead as the company is suggesting, it might be a case of 'get to it before your adversaries do'—the AI arms race churns on whether we want it or not. Jacob got his hands on a gaming PC for the first time when he was about 12 years old.
He swiftly realised the local PC repair store had ripped him off with his build and vowed never to let another soul build his rig again. With this vow, Jacob the hardware junkie was born.
Since then, Jacob's led a double-life as part-hardware geek, part-philosophy nerd, first working as a Hardware Writer for PCGamesN in 2020, then working towards a PhD in Philosophy for a few years while freelancing on the side for sites such as TechRadar, Pocket-lint, and yours truly, PC Gamer. Eventually, he gave up the ruthless mercenary life to join the world's #1 PC Gaming site full-time. It's definitely not an ego thing, he assures us.
Best gaming laptop 2026: I've tested the best laptops for gaming of this generation and here are the ones I recommend.
United States Latest News, United States Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
AI agents show they can create exploits, not just find vulnsMythos and GPT-5.5 muscle out the competition
Read more »
Japan’s PM orders cybersecurity review to stop Mythos going full CyberZillaFears exponential increase in attack scale and speed
Read more »
Cloudflare to fire 1,100 staff whose jobs just aren’t AI enoughAround 20 percent of staff get an ‘In one hour, you might not work here anymore’ email
Read more »
Anthropic's Mythos report on popular open source project's codebase highlights one 'confirmed security vulnerability'A CURL developer was offered access to Anthropic's Mythos model through the AI biz's Project Glasswing. The report on his open source project's codebase revealed one confirmed security vulnerability, with three other findings turned out to be false positives.
Read more »