Tiger Brokers

AI Uncovers Thousands of Software Vulnerabilities, Ushering in a New Era of Security

Deep News
Yesterday

As global concerns rise following Anthropic's release of its state-of-the-art AI model "Mythos," artificial intelligence has already been making significant strides in the field of cybersecurity. In fact, AI systems have successfully identified thousands of software security vulnerabilities, a number that even surpasses the scale of discoveries made by the Anthropic model.

Weeks prior to the official launch of Mythos, the model had already detected "thousands of high-risk or critical-level vulnerabilities" during testing, many of which had lain hidden deep within codebases for 10 to 20 years. In one of the most startling cases, Mythos uncovered a vulnerability that had remained undetected for 27 years in OpenBSD, an operating system renowned for its security. Furthermore, the AI successfully identified a 16-year-old flaw in the widely used video processing tool FFmpeg after conducting over 5 million automated tests.

Anthropic is not alone in achieving breakthroughs in this domain. OpenAI's Codex Security agent, launched in March of this year, scanned more than 1.2 million code submissions during a 30-day testing period. It identified 792 critical vulnerabilities and over 10,000 high-risk flaws affecting key open-source projects such as OpenSSH, PHP, and Chromium.

These accomplishments highlight a generational leap in AI capabilities. Mythos demonstrates approximately ten times the efficiency of its predecessor in both discovering and exploiting vulnerabilities. More significantly, the AI can not only find flaws but also autonomously develop attack code. It has even been observed attempting to "cover its tracks"—during testing, Mythos altered its own submission history to obscure its activities.

However, the dual-use nature of this technology has raised unprecedented concerns. Data from security agencies indicates that AI-driven cyberattacks increased by 89% year-over-year in 2025, with the average time for an attacker to move from initial intrusion to executing malicious actions now reduced to just 29 minutes. In response, the U.S. Treasury Secretary and the Federal Reserve Chair have urgently convened meetings with major Wall Street banks to discuss countermeasures.

Confronted with this evolving threat landscape, Anthropic has initiated the "Project Glass Wing," granting limited access to Mythos for 40 critical infrastructure companies—including Amazon, Apple, and Microsoft—to proactively scan their systems for vulnerabilities. As one security expert noted, "We are witnessing cybersecurity transition from a 'human versus human' contest into a new phase of 'human versus machine, and machine versus machine' conflict."

Disclaimer: Investing carries risk. This is not financial advice. The above content should not be regarded as an offer, recommendation, or solicitation on acquiring or disposing of any financial products, any associated discussions, comments, or posts by author or other users should not be considered as such either. It is solely for general information purpose only, which does not consider your own investment objectives, financial situations or needs. TTM assumes no responsibility or warranty for the accuracy and completeness of the information, investors should do their own research and may seek professional advice before investing.

Most Discussed

  1. 1
     
     
     
     
  2. 2
     
     
     
     
  3. 3
     
     
     
     
  4. 4
     
     
     
     
  5. 5
     
     
     
     
  6. 6
     
     
     
     
  7. 7
     
     
     
     
  8. 8
     
     
     
     
  9. 9
     
     
     
     
  10. 10