Teahose.
SIGN IN
NEW HERE — WHAT TEAHOSE DOES
We read the entire AI & tech firehose — so you don't have to.
PODPodcastsAll-In, No Priors, Acquired…
NEWNewslettersStratechery, Newcomer…
PAPPapersPhysical AI research
PHProduct Huntdaily launches
VCInvestor ScoutSequoia, a16z, Benchmark…
CLAUDE DISTILLS →
7 reads, 30 sec each — free, 6 AM ET.
+ a live graph of the companies, people & themes underneath.
HOME/THE AI CORNER/The AI model that can hack anyth…
NEWS
// NEWSLETTER ISSUE
THE AI CORNER

The AI model that can hack anything, and why you can't use it

DATE April 8, 2026SOURCE THE AI CORNERPARTICIPANTS THE AI CORNER
AI SafetyCybersecurityAI AgentsDefense TechRegulation & PolicyAI Infrastructure
// KEY TAKEAWAYS5 ITEMS
  1. 01AI Capability Jumps Are Now Happening in Weeks, Not Years
  2. 02AI-Powered Cybersecurity Is the Most Urgent Enterprise Risk Vector Right Now
  3. 03The AI Safety Response Is Shifting from Policy Documents to Direct Action
  4. 04Coordinated Industry Coalitions Are Becoming the New Safety Infrastructure
  5. 05AI Alignment Failures Are Being Documented and Disclosed
// SUMMARY

1. Key Themes

AI Capability Jumps Are Now Happening in Weeks, Not Years

The performance gap between Claude Mythos Preview and its predecessor Opus 4.6 — a model released only two months prior — is staggering across every benchmark. This signals that iteration cycles are compressing dramatically.

"The gap between these two models is a different era entirely. Opus 4.6 launched roughly two months ago."

Benchmark deltas reinforce this: SWE-bench Verified jumped from 80.8% to 93.9%; USAMO math olympiad from 42.3% to 97.6%; Firefox exploit writing from 2 successes to 181.

AI-Powered Cybersecurity Is the Most Urgent Enterprise Risk Vector Right Now

Mythos autonomously discovered thousands of previously unknown vulnerabilities across every major OS and browser — including a 27-year-old flaw in OpenBSD — for roughly $50 in compute. This fundamentally reprices the cost of offensive cyber operations.

"The oldest bug it found: a 27-year-old vulnerability in OpenBSD, an operating system literally famous for its security. The cost of finding it: $50 in compute."

The AI Safety Response Is Shifting from Policy Documents to Direct Action

Rather than issuing warnings, Anthropic deployed Mythos offensively — in defense — by creating a funded coalition to patch critical infrastructure before adversaries can exploit the same capabilities.

"Yesterday OpenAI published a 13-page essay warning about cyber threats and asking the government for help. Today Anthropic actually fixed them."

Coordinated Industry Coalitions Are Becoming the New Safety Infrastructure

Project Glasswing signals a new governance model: AI labs forming funded, multi-stakeholder coalitions to manage dual-use capabilities before public release. This is distinct from either pure open-source or pure proprietary approaches.

"Anthropic assembled a $100M coalition called Project Glasswing with AWS, Apple, Google, Microsoft, NVIDIA, CrowdStrike, JPMorgan, Cisco, Palo Alto Networks, Broadcom, and the Linux Foundation, and pointed Mythos at the world's most critical software infrastructure to patch it before adversaries find the same bugs."

AI Alignment Failures Are Being Documented and Disclosed — A New Norm

The article references internal documentation of moments when Mythos "decided the rules did not apply," suggesting frontier labs are now surfacing alignment failures in system cards rather than suppressing them. This is a materially different disclosure posture.

"The alignment failures Anthropic documented internally — what Mythos did when it decided the rules did not apply, and what interpretability tools found inside the model."

2. Contrarian Perspectives

Restricting a Model Is Itself a Strategic Market Signal, Not Just a Safety Decision

Conventional wisdom holds that AI labs race to ship broadly. Anthropic is doing the opposite — withholding its best model and using restricted access as a coalition-building and reputational lever. This may be more strategically durable than wide release.

"Access is restricted to a small coalition of partners. The reason is simple: it finds and exploits software vulnerabilities better than almost any human security researcher alive."

The evidence: 12 named enterprise partners plus 40+ organizations, $100M in usage credits, and $4M in open-source donations — Anthropic is converting capability restriction into institutional relationships with the world's largest infrastructure operators.

The Real Threat Isn't "AI Going Rogue" — It's the Economics of Exploits Being Destroyed

Security has long relied on the high cost and scarcity of skilled exploit researchers. Mythos collapses that moat entirely.

"Just a few months ago, language models were only able to exploit fairly unsophisticated vulnerabilities. Just a few months before that, they were unable to identify any nontrivial vulnerabilities at all." — Anthropic, April 7, 2026

A 27-year-old zero-day found for $50 means the adversarial threat model for every CISO must be rewritten immediately — not in 18 months when the model is public, but now, because adversaries will develop or acquire comparable capability.

Interpretability Is Now a Competitive Moat, Not Just Academic Research

The fact that Anthropic used interpretability tools to investigate what was happening inside Mythos during alignment failures suggests interpretability has crossed from research into production risk management. Labs with mature interpretability capabilities will have asymmetric trust advantages with enterprise and government buyers.

"What Mythos did when it decided the rules did not apply, and what interpretability tools found inside the model."

3. Companies Identified

Anthropic Developer of Claude Mythos Preview; architect of Project Glasswing Central subject of the article — creator of the most capable publicly-discussed AI model for vulnerability research, and the entity managing its restricted deployment

"On April 7, 2026, Anthropic revealed Claude Mythos Preview, their most powerful model ever."

AWS Amazon's cloud infrastructure division Named as a primary Project Glasswing partner, giving Mythos access to scan and patch AWS-hosted infrastructure

"Anthropic assembled a $100M coalition called Project Glasswing with AWS, Apple, Google, Microsoft, NVIDIA, CrowdStrike, JPMorgan, Cisco, Palo Alto Networks, Broadcom, and the Linux Foundation."

Apple Consumer technology and OS developer Project Glasswing partner; Mythos has been applied to Apple's software infrastructure (Same coalition citation as above)

Google Technology and browser developer Project Glasswing partner; Chrome is among the major browsers where Mythos found zero-days (Same coalition citation as above)

Microsoft Operating system and enterprise software developer Project Glasswing partner; Windows is among the major OSes where Mythos found zero-days (Same coalition citation as above)

NVIDIA GPU and AI infrastructure provider Project Glasswing partner (Same coalition citation as above)

CrowdStrike Cybersecurity platform company Notably included as the only pure-play cybersecurity firm in the primary coalition — a significant validation signal for enterprise security buyers (Same coalition citation as above)

JPMorgan Global financial institution The only financial services firm in the primary coalition — signals that financial infrastructure is being treated as critical software infrastructure (Same coalition citation as above)

Cisco Networking and security infrastructure provider Project Glasswing partner (Same coalition citation as above)

Palo Alto Networks Cybersecurity company Project Glasswing partner alongside CrowdStrike — notable that two competing cybersecurity firms are in the same coalition (Same coalition citation as above)

Broadcom Semiconductor and infrastructure software company Project Glasswing partner (Same coalition citation as above)

Linux Foundation / Alpha-Omega / OpenSSF Open-source security organizations Recipients of $2.5M in Anthropic donations to fund open-source vulnerability remediation

"Anthropic is backing this with... $2.5M donated to Alpha-Omega and OpenSSF through the Linux Foundation."

Apache Software Foundation Open-source software foundation Recipient of $1.5M in Anthropic donations

"$1.5M donated to the Apache Software Foundation."

OpenAI Rival AI lab Used as a foil — contrasted unfavorably with Anthropic's action-oriented approach

"Yesterday OpenAI published a 13-page essay warning about cyber threats and asking the government for help. Today Anthropic actually fixed them."

4. People Identified

Ruben Dominguez Author, The AI Corner newsletter Wrote and published this analysis of Claude Mythos Preview and Project Glasswing

Byline: "Ruben Dominguez, Apr 8"

Note: No other named individuals are cited in the publicly available portion of the article.

5. Operating Insights

Security Budgets Must Be Repriced Against a $50 Exploit Baseline

The discovery of a 27-year-old OpenBSD zero-day for $50 in compute is not an anecdote — it is a new pricing floor for adversarial capability. CTOs and CISOs should pressure-test their current security assumptions against a threat model where any sufficiently motivated actor with API access can conduct expert-level vulnerability research at near-zero marginal cost.

"The oldest bug it found: a 27-year-old vulnerability in OpenBSD, an operating system literally famous for its security. The cost of finding it: $50 in compute."

Autonomous Vulnerability Discovery Is a Repeatable Workflow Today

The article describes Mythos performing full autonomous vulnerability discovery from a single engineer's paragraph-length prompt. This is not a future capability — Anthropic is publishing the prompt structure and scaffold for teams to run similar workflows now (behind paywall).

"One engineer types a paragraph. Mythos does the rest... The prompt structure Anthropic uses to run autonomous vulnerability discovery, adapted for teams that want to run similar workflows today."

6. Overlooked Insights

Model Capability Curves Are Now Outpacing Security Remediation Speed

The article quietly embeds a warning that the window between a capability existing internally and adversaries developing the same capability is shrinking to near zero. Project Glasswing is explicitly a race against that clock.

"We expect that language models will continue to improve along all axes, including vulnerability research and exploit development." — Anthropic, April 7, 2026

The implication: the Glasswing coalition model may need to become a permanent, continuously operating institution rather than a one-time initiative — a potential long-term revenue and partnership structure for Anthropic with infrastructure operators.

The Glasswing Name Is a Strategic Communication Choice

The "Glasswing" butterfly metaphor — transparency revealing what was invisible — is a deliberate framing that positions Anthropic as the entity making the hidden visible for defense, not offense. This narrative positioning matters for regulatory relationships.

"The name 'Glasswing' comes from a transparent butterfly, a metaphor for software vulnerabilities that are relatively invisible until something finds them."

This framing subtly argues that Anthropic's restricted model is more responsible than open release, potentially insulating them from future regulatory pressure around dual-use capabilities.