Can Claude Mythos Pose a Threat to Financial Security? The U.S. Treasury Secretary and the Fed Chair Hold an Emergency Meeting to Warn of Risks

The U.S. Treasury Secretary and the Federal Reserve Chair have urgently convened top executives on Wall Street to issue a warning about Anthropic’s latest model, Mythos. The model has been classified by authorities as a systemic risk to the financial system.

Finance officials urgently convene top executives on Wall Street; AI network threats upgraded to systemic risk

According to a report by Bloomberg, U.S. Treasury Secretary Scott Bessent and Federal Reserve Chair Jerome Powell urgently convened major Wall Street bank CEOs at the Treasury Department headquarters in Washington, D.C. last week, issuing warnings about potential cybersecurity risks that Anthropic’s latest model, “Claude Mythos Preview,” may pose.

Bank executives attending the meeting included Citigroup CEO Jane Fraser, Morgan Stanley CEO Ted Pick, Bank of America CEO Brian Moynihan, Wells Fargo CEO Charlie Scharf, and Goldman Sachs CEO David Solomon; JPMorgan Chase CEO Jamie Dimon was unable to attend. The above institutions have all been designated by regulators as systemically important financial institutions.

The meeting was attended in person by the Treasury Secretary and the Federal Reserve Chair, which the industry views as an extraordinary move. In the past, government intervention in AI-related risks mostly remained at the level of working groups within institutions; now, it has been elevated to a warning delivered directly by the top leaders of financial authorities in person, clearly signaling that authorities have classified AI network threats as a systemic risk to the stability of the financial system.

Mythos model capabilities are astonishing; it can independently discover large numbers of zero-day vulnerabilities

Based on technical materials released by Anthropic on the same day, Mythos has the ability to identify and exploit vulnerabilities across all mainstream operating systems and web browsers. In the testing phase, the model independently found thousands of previously unknown zero-day vulnerabilities (zero-day vulnerabilities), including a vulnerability in the security-oriented open-source operating system OpenBSD that had been lurking for as long as 27 years; in addition, the model also discovered a vulnerability in the multimedia processing library FFmpeg that even automated testing tools failed to detect after running 5 million times of procedures.

Anthropic researchers emphasized that Mythos’s vulnerability-discovery capability comes from overall progress in the model’s programming, reasoning, and autonomy, rather than being the result of intentionally trained behavior.

In a statement, the company said, “The same capability that makes the model more effective at patching vulnerabilities also makes it more effective at exploiting vulnerabilities.” This highlights the dual nature of Mythos: the boundary between defense and attack is nearly erased in the face of this kind of model.

Anthropic refuses to publicly disclose; launches “Project Glasswing” to restrict access

Because the capabilities are so powerful, Anthropic decided not to publicly release Mythos and instead adopted a strategy to restrict access, making it available only to certain partner companies. Alongside this, the company also announced the launch of a defensive cybersecurity collaboration program called “Project Glasswing,” working with more than 40 corporate partners such as AWS, Apple, Cisco, Google, JPMorgan Chase, Microsoft, and NVIDIA, with the goal of proactively identifying and patching vulnerabilities in critical software before attackers strike.

Image source: X/@AnthropicAI Anthropic also announced the launch of a defensive cybersecurity collaboration program called “Project Glasswing”

Anthropic said, “Given the powerful capabilities of the model, we are taking a cautious approach in how we release it. We are working with a small group of early access customers to test the model, and we believe this is the most breakthrough generation we’ve built so far.”

The company also disclosed that it has briefed government officials on offensive and defensive use-case scenarios for Mythos, and continues to hold discussions with the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the AI Standards Innovation Center. The key issues that external observers will watch next are focused on how regulatory authorities will formulate release-review standards for similar models, what specific defensive measures financial institutions should take, and whether coordination among international regulators can keep pace with the speed of technological evolution.

This article was generated by an encrypted Agent that compiled information from various parties, and is reviewed and edited by 《Encrypted City》. It is still in the training stage and may contain logical errors or information inaccuracies. The content is provided for reference only; please do not treat it as investment advice.