[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fxX5GNqKo-pb9aySRi1pnxJ-StTfO2cas5cfjF7aFbt0":3},{"article":4,"iocs":55},{"id":5,"title":6,"slug":7,"summary":8,"ai_summary":9,"brief":10,"full_text":11,"url":12,"image_url":13,"published_at":14,"ingested_at":15,"relevance_score":16,"entities":17,"category_id":34,"category":35,"article_tags":39},"c5e77e63-cc23-4107-a6ff-58f6ece5e6ae","Claude Mythos AI Identified 10,000+ Software Vulnerabilities in One Month","claude-mythos-ai-identified-10-000-software-vulnerabilities-in-one-month-78ff8b","Anthropic says its Claude Mythos AI identified more than 10,000 software vulnerabilities in one month, including critical flaws in open-source code.","Anthropic's Project Glasswing initiative deployed Claude Mythos Preview, an unreleased AI model, to identify security vulnerabilities across software systems. In one month, the AI and 50 partners discovered over 10,000 high\u002Fcritical-severity flaws across major software, with 1,726 confirmed by independent researchers and an estimated 6,200 severe bugs ultimately identified. A critical certificate forgery vulnerability (CVE-2026-5194, CVSS 9.3) was discovered in wolfSSL, an open-source security library protecting five billion devices.","Anthropic's Claude Mythos AI identified 10,000+ vulnerabilities in one month, including critical flaw in wolfSSL.","Security Artificial IntelligenceClaude Mythos AI Identified 10,000+ Software Vulnerabilities in One Month Anthropic says its Claude Mythos AI identified more than 10,000 software vulnerabilities in one month, including critical flaws in open-source code. byDeeba AhmedMay 26, 20262 minute read Artificial intelligence safety startup, Anthropic, recently shared the first results of a new program called Project Glasswing. Launched in April 2026, the defensive initiative tests a highly capable, unreleased AI model named Claude Mythos Preview to find security weaknesses in the software. Huge Number of Flaws Discovered in Free Software Initial data shows the AI is fast at finding flaws. In just one month, Anthropic and its 50 restricted partners identified more than 10,000 high- or critical-severity security gaps across major software systems. Anthropic also used the tool to check over 1,000 open-source software projects. This refers to free, public code under the hood of billions of everyday devices. Over 23,000 total potential bugs were spotted, and to cross-verify the findings, six independent security research firms examined the data. External experts confirmed 1,726 real flaws, including around 1,000 high-risk issues. Anthropic believes the final count of severe bugs will reach 6,200 as checking continues. One major discovery happened inside wolfSSL, an open-source security library used by five billion smart gadgets and routers to encrypt data. The AI discovered a critical certificate forgery flaw, now officially catalogued as CVE-2026-5194. It has a high severity rating of 9.3 out of 10, though the research firm Red Hat rates it a maximum 10. The AI even built a mock attack demonstrating how cybercriminals could exploit this flaw to forge digital identities and host fake bank websites that appear perfectly real to regular users. The dashboard of open-source vulnerabilities, showing vulnerabilities of all severities (Source: Antrhopic) Tech Companies Face a Huge Fix-It Backlog Finding flaws is now much quicker than fixing them, creating a backup for human teams. While the average time to patch a bug is two weeks, several tech companies are using the data to clean up their applications: Cloudflare found 2,000 bugs across its systems. Mozilla fixed 271 flaws in its Firefox 150 web browser, a massive jump from what older AI tools found in Firefox 148. Palo Alto Networks, Microsoft, and Oracle are rolling out fixes much faster than their usual speed. Apart from software testing, the AI helped a partner bank stop a fraudulent 1.5-million-dollar wire transfer after an unknown hacker took over a customer’s email and made spoof phone calls. Because this AI model is powerful, Anthropic is keeping it private to prevent threat actors from using it offensively. However, the company plans to expand the program to the UK and US governments while humans work on patching the thousands of security gaps already found. Deeba Ahmed Deeba is a veteran cybersecurity reporter at Hackread.com with over a decade of experience… AIAnthropicArtificial IntelligenceClaudeCybersecurityMythos AIProject GlasswingVulnerability Leave a Reply Cancel reply View Comments (0) Related Posts Read More Security Cyber Attacks Phishing Scam Iran’s MuddyWater Group Targets Israelis with Fake Memo Spear-Phishing MuddyWater (aka Mango Sandstorm and Static Kitten) is a cyberespionage group that's believed to be active since 2017. byDeeba Ahmed Security Malware can extract data from air-gapped PC through power supply One of the most secure system arrangements today consists of air-gapped PCs.... bySudais Asif Read More Security US Agencies Face CISA Deadline Over Critical Cisco SD-WAN Flaw US agencies race to meet a CISA deadline after a critical Cisco SD-WAN Flaw exposed federal networks to long-term intrusion and forced security action. byDeeba Ahmed Security Network Pentesting Checklist Network pentesting is a frequently used and successful method of recognizing security issues in a company’s IT infrastructure.… byOwais Sultan","https:\u002F\u002Fhackread.com\u002Fclaude-mythos-ai-vulnerabilities-one-month\u002F","https:\u002F\u002Fhackread.com\u002Fwp-content\u002Fuploads\u002F2026\u002F05\u002Fmy-Copy.png","2026-05-26T15:55:05+00:00","2026-05-26T16:00:18.553512+00:00",8,[18,21,24,27,29,32],{"name":19,"type":20},"Anthropic","vendor",{"name":22,"type":23},"Claude Mythos","product",{"name":25,"type":26},"Project Glasswing","campaign",{"name":28,"type":23},"wolfSSL",{"name":30,"type":31},"Open-source software","technology",{"name":33,"type":20},"Mozilla","80544778-fabb-4dcd-aa35-17492e5dcf4f",{"id":34,"icon":36,"name":37,"slug":38},null,"Vulnerabilities","vulnerabilities",[40,45,50],{"category":41},{"id":42,"icon":36,"name":43,"slug":44},"02371804-cf6d-4449-98de-f1a2d4d9b266","Tools","tools",{"category":46},{"id":47,"icon":36,"name":48,"slug":49},"839da5c1-3c34-47e2-9499-f7201640e3ac","AI Security","ai-security",{"category":51},{"id":52,"icon":36,"name":53,"slug":54},"ade75414-7914-4e23-a450-48b64546ee70","Open Source","open-source",[56],{"type":57,"value":58,"context":59},"cve","CVE-2026-5194","Critical certificate forgery flaw in wolfSSL security library (CVSS 9.3)"]