HomeEverythingEducation
Equities & FundsCrypto & Digital AssetsAI & TechnologyBusiness & CorporateUS Politics & PolicyGeopolitics & Global RiskMacro, Rates & FXCommodities & EnergyEuropean Politics & MarketsAsia-PacificReal Estate & Property
← All Stories

US Cyber Agency Uses Anthropic's Mythos AI to Audit Government Code

Created at 6 Jul · 8:12 PM1 source↑ Market-relevant
IN SHORT

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is reportedly using Anthropic's AI model Mythos to scan government software for vulnerabilities. This initiative highlights the government's adoption of AI tools, even amid Anthropic's complex relationship with U.S. authorities.

✉Newsletter

PiQ Daily

Pick your topics. Get only what matters, on your cadence.

Key Numbers

threepeople familiar with the matter
threesources familiar with the matter
twosources said audits uncovered vulnerabilities

Who's Involved

CISA
U.S. cyber defense agency using Anthropic's AI model
Anthropic
AI startup whose model Mythos is being used
Raphael Satter
Reuters reporter
National Security Agency
U.S. eavesdropping agency also using Mythos
US Cyber Agency Uses Anthropic's Mythos AI to Audit Government Code

↳ Why This Matters

The use of advanced AI models like Anthropic's Mythos by U.S. government agencies for cybersecurity underscores the growing integration of artificial intelligence into national security operations. It also highlights the ongoing efforts to balance the benefits of cutting-edge AI with concerns over its potential misuse and the complex regulatory landscape.

Key facts

  • The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is using Anthropic's AI model Mythos.
  • Mythos is being employed to audit government software code for vulnerabilities.
  • The audits have reportedly identified a significant number of security flaws.
  • Anthropic previously faced a supply-chain risk designation from the Pentagon, which was later blocked by a judge.
  • The National Security Agency has also been using Mythos for testing.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is reportedly utilizing Anthropic's AI model, Mythos, to scrutinize government software code for security flaws. This initiative, confirmed by three individuals familiar with the matter, signifies the government's increasing reliance on advanced AI tools for cybersecurity.

The Mythos model is being deployed by CISA's Attack Surface Evaluation team to scan code repositories for vulnerabilities that could be exploited by foreign adversaries and cybercriminals. While the sources indicated that a substantial number of bugs have already been discovered, specific details regarding the quantity or severity of these vulnerabilities were not disclosed.

Anthropic's engagement with the U.S. government has been marked by challenges. The AI company had a contentious relationship with U.S. authorities after refusing to remove safeguards that prevented its AI from being used for autonomous weapons or domestic surveillance, leading to a temporary supply-chain risk designation by the Pentagon. This designation was later overturned by a judge.

Despite these past issues, the National Security Agency (NSA) has reportedly been using Mythos since April, even during the period of the designation. Reports suggest NSA analysts have been impressed with the model's capabilities in classified settings. The White House's recent demand for Anthropic to ban foreigners from running a public version of Mythos, called Fable, led to a temporary global shutdown of the model.

Frequently asked questions

CISA stands for the Cybersecurity and Infrastructure Security Agency, a U.S. federal agency responsible for protecting critical infrastructure from cyber threats.

Mythos is an AI model developed by Anthropic, described as highly capable in finding and exploiting cybersecurity vulnerabilities.

The designation, applied by the Pentagon, flagged Anthropic as a potential supply-chain risk, typically reserved for foreign companies suspected of espionage. It was later blocked by a judge.

What Happens Next

01CISA has not yet provided official comment on the initiative.
02Anthropic has not responded to inquiries regarding the use of Mythos by CISA.

Get the newsletter.

Pick the topics you actually care about. We'll email when there's news worth your time, on the cadence you choose. Cancel any time from your account.

Cadence

How It Developed

CISA is using Anthropic's AI model Mythos to audit government code.
The AI model is scanning for bugs that could be exploited by foreign spies and cybercriminals.
The audits have reportedly uncovered a large number of vulnerabilities.
Anthropic has had a complex relationship with the U.S. government, including a supply-chain risk designation that was later blocked by a judge.
The National Security Agency has also been using Mythos despite previous blacklisting.

Sources

T1
Exclusive-US cyber agency is using Anthropic's Mythos to audit government code, sources sayReuters

Related Stories

TeraWulf jumps on $19B Anthropic AI data center lease
6 Jul · 1:37 PM
US firms turn to Chinese AI models amid US restrictions
6 Jul · 4:35 PM
Anthropic accused of secret user tracking in China
6 Jul · 4:50 PM
Consumer product companies leverage AI for faster innovation
6 Jul · 6:08 AM
AI empowers small business founder to launch and expand rapidly
6 Jul · 10:04 AM